CNNVD-202509-3693 Information
Sep 23, 2025
cve
CNNVD ID
CNNVD-202509-3693
Related CVE
- CNNVD Published: 2025-09-23
Description (Chinese)
Anadolu Hayat Emeklilik AHE Mobile是土耳其Anadolu Hayat Emeklilik公司的一款养老计划移动应用。 Anadolu Hayat Emeklilik AHE Mobile 1.9.7版本至1.9.9之前版本存在安全漏洞,该漏洞源于用户可控密钥导致授权绕过,可能导致权限滥用。
Description (English)
Anadolu Hayat Emeklik AHE Mobile is a mobile application of old-age plans for Anadolu Hayat Emeklik in Turkey. Anadolu Hayat Emeklik AHE Mobile versions 1.9.7 to 1.9.9.9 have security loopholes that stem from user-controlled keys that lead to the circumvention of the authorization and may lead to abuse of authority.
Hazard Level
High
Vulnerability Type
其他
Affected Vendor
Anadolu Hayat Emeklilik
Published
2025-09-23
Last Modified
2026-02-24
References
https://www.usom.gov.tr/bildirim/tr-25-0287
Patch
https://www.anadoluhayat.com.tr/
Share on: