CVE-2025-15024

HIGH CVSS 8.8 View on NVD ↗

Description

Improper Control of Generation of Code ('Code Injection') vulnerability in Yordam Information Technology Consulting, Training and Electronic Systems Industry and Trade Inc. Library Automation System allows Remote Code Inclusion. This issue affects Library Automation System: from v.19.5 before v.22.1.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0240

Published: May 14, 2026 18:16 UTC Modified: May 14, 2026 18:19 UTC