CVE-2026-1816 describes an improper restriction of excessive authentication attempts in the TEİAŞ Mobile Application. In the affected release range, 1.6.2 through versions before 1.13, the application may allow brute-force attempts against authentication. The published CVSS vector indicates network reachability, low attack complexity, low privileges, and required user interaction, with the main impact on [truncated]
MEDIUMTurkiye Electricity Transmission Corporation (TEİAŞ)CVE published 2026-05-21
CVE-2026-1815 is a medium-severity session management vulnerability affecting the TEİAŞ Mobile Application from 1.6.2 before 1.13. The published description says insufficient session expiration can allow session hijacking, and the NVD record maps the weakness to CWE-613. Because the session can remain valid longer than intended, an attacker who obtains session material may be able to reuse it and access t [truncated]
