PT-2026-42475 · Turkiye Electricity Transmission · Tei̇Aş Mobile Application
Metin Ögtem
·
Published
2026-05-21
·
Updated
2026-05-21
·
CVE-2026-1816
CVSS v3.1
6.3
Medium
| Vector | AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N |
Name of the Vulnerable Software and Affected Versions
Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application versions 1.6.2 through 1.12
Description
Improper restriction of excessive authentication attempts allows for Brute Force attacks, which can lead to an OTP (One-Time Password) bypass. Brute Force is a trial-and-error method used to guess login credentials or security codes by systematically trying many possible combinations.
Recommendations
Update the Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application to version 1.13 or later.
Fix
Improper Restriction of Excessive Authentication Attempts
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Tei̇Aş Mobile Application