PatchSiren cyber security CVE debrief
CVE-2025-10912 Saastech Cleaning and Internet Services Inc. CVE debrief
CVE-2025-10912 is a medium-severity vulnerability in Saastech Cleaning and Internet Services Inc.'s TemizlikYolda, affecting versions through 11022026. The issue is an Authorization Bypass Through User-Controlled Key vulnerability, which allows for Manipulating User-Controlled Variables. The Common Vulnerability Scoring System (CVSS) score for this vulnerability is 5.4. The vulnerability was published on [cvePublishedAt] and last modified on [cveModifiedAt].
- Vendor
- Saastech Cleaning and Internet Services Inc.
- Product
- TemizlikYolda
- CVSS
- MEDIUM 5.4
- CISA KEV
- Not listed in stored evidence
- Original CVE published
- 2026-02-11
- Original CVE updated
- 2026-06-05
- Advisory published
- 2026-02-11
- Advisory updated
- 2026-06-05
Who should care
Users of Saastech Cleaning and Internet Services Inc. TemizlikYolda through version 11022026 should be aware of this vulnerability and take necessary actions to mitigate it.
Technical summary
The vulnerability is caused by an Authorization Bypass Through User-Controlled Key issue in TemizlikYolda, which allows for Manipulating User-Controlled Variables. The CVSS vector for this vulnerability is CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L.
Defensive priority
This vulnerability has a medium severity and may be used in various attacks. Users of the affected product should prioritize patching.
Recommended defensive actions
- Apply patches or updates provided by the vendor to address the vulnerability.
- Restrict access to the affected system to minimize potential damage.
Evidence notes
The vendor was contacted early about this disclosure but did not respond in any way.
Official resources
CVE-2025-10912 was published on 2026-02-11T08:16:06.830Z and last modified on 2026-06-05T08:16:29.073Z.