PT-2026-24208 · Tubitak Bilgem · Liderahenk
Edip Alhazouri̇
·
Published
2026-03-10
·
Updated
2026-04-30
·
CVE-2026-2339
CVSS v3.1
7.5
High
| Vector | AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TUBITAK BILGEM Software Technologies Research Institute Liderahenk versions prior to 3.4.0
Description
A missing authentication check for a critical function in Liderahenk allows for remote code inclusion, privilege abuse, and command injection. The issue allows an attacker to potentially execute arbitrary code, gain unauthorized access, and inject malicious commands.
Recommendations
Update Liderahenk to version 3.4.0 or later.
Fix
Missing Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Liderahenk