Abdüssamed Güzey

**Name of the Vulnerable Software and Affected Versions** Birtech Senseway versions through 09022026 **Description** An improper authentication issue exists in Birtech Senseway, allowing for authentication abuse. The vendor was contacted regarding this issue but did not respond. **Recommendations** Update to a version later than 09022026.

**Name of the Vulnerable Software and Affected Versions** Birtech Information Technologies Industry and Trade Ltd. Co. Senseway versions through 09022026 **Description** A security issue exists in Birtech Information Technologies Industry and Trade Ltd. Co. Senseway that allows retrieval of embedded sensitive data due to insecure storage. The vulnerability involves the insecure storage of sensitive information. **Recommendations** Update Senseway to a version beyond 09022026.

**Name of the Vulnerable Software and Affected Versions** Sensaway versions through 09022026 **Description** Sensaway software contains a flaw that permits the upload of a web shell to a web server through unrestricted file uploads. This allows for potentially malicious code execution. The vendor was contacted regarding this issue but did not respond. **Recommendations** Versions through 09022026 are affected and should be updated when a patch becomes available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Profelis Informatics and Consulting PassBox versions prior to 1.2 **Description** The issue is related to improper authentication, missing authentication for critical functions, and improper authorization, allowing authentication abuse. This can lead to unauthorized access. **Recommendations** For versions prior to 1.2, upgrade the affected component immediately to mitigate exposure. As a temporary workaround, consider restricting access to critical functions until a patch is available.