CVE-2025-9342

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Anadolu Hayat Emeklilik Inc. AHE Mobile versions 1.9.7 through 1.9.8

Description An issue exists in Anadolu Hayat Emeklilik Inc. AHE Mobile that allows for authorization bypass through a user-controlled key, potentially leading to privilege abuse.

Recommendations Update to AHE Mobile version 1.9.9 or later.

Fix

IDOR

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-639

Related Identifiers

CVE-2025-9342

Affected Products

Ahe Mobile

CVE-2025-9342

Weakness Enumeration

Related Identifiers

Affected Products

References · 6