CVE-2025-5518
Unknown
Unknown - Not Provided
BaseFortify
Publication date: 2025-09-16
Last updated on: 2025-09-16
Assigner: Computer Emergency Response Team of the Republic of Turkey
Description
Description
Authorization Bypass Through User-Controlled Key vulnerability with user privileges in ArgusTech BILGER allows Exploitation of Trusted Identifiers.This issue affects BILGER: before 2.4.6.
CVSS Scores
EPSS Scores
| Probability: | |
| Percentile: |
Meta Information
Affected Vendors & Products
| Vendor | Product | Version / Range |
|---|---|---|
| argustech | bilger | * |
Helpful Resources
Exploitability
CWE
KEV
| CWE ID | Description |
|---|---|
| CWE-639 | The system's authorization functionality does not prevent one user from gaining access to another user's data or record by modifying the key value identifying the data. |
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?
This vulnerability is an Authorization Bypass Through User-Controlled Key in ArgusTech BILGER software versions before 2.4.6. It allows users with privileges to exploit trusted identifiers, potentially bypassing authorization controls.
How can this vulnerability impact me? :
The vulnerability can lead to unauthorized access or actions by exploiting trusted identifiers, which may compromise the confidentiality of data since the CVSS score indicates high impact on confidentiality.
Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70