HIGHCVE-2026-5161Published 2026-04-29Modified 2026-05-04CNA TR-CERT

CVE-2026-5161: Improper Authentication in TUBITAK BILGEM's Pardus About

Improper link resolution before file access ('link following') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus About allows Symlink Attack. This issue affects Pardus About: before 1.2.2.

CVSS v3.1: 8.8
Severity: HIGH
Fixed in: 1.2.2
Affected Products: 1

Fix available

1.2.2

Affected packages

TUBITAK BILGEM Software Technologies Research Institute / Pardus About
< 1.2.2 (from 0)

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H

References

usom.gov.tr

Metrics

Fix available