CVE-2025-10449

HIGH EPSS 33.3%

Published Sep 25, 20259mo ago · Modified Jun 17, 20261w ago

8.6 CVSS 3.1

High

Published Sep 25, 2025 9mo ago

Last Modified Jun 17, 2026 1w ago

Description

Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in Saysis Computer Systems Trade Ltd. Co. Saysis Web Portal allows Path Traversal. This issue affects Saysis Web Portal: from 3.1.9 & 3.2.0 before 3.2.1.

CVSS Details

Base Score

8.6

Exploitability

3.9

Impact

4.0

Vector string

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N

Attack Vector Network

Attack Complexity Low

Privileges Required None

User Interaction None

Scope Changed

Confidentiality High

Integrity None

Availability None

Threat Intelligence

EPSS Exploit Probability

33.3% percentile

Exploit & Patch Status

No Known Exploit

No Patch Available

Weaknesses 1

CWE-22 Path Traversal Resource Mgmt

References 2

siberguvenlik.gov.tr https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0297
usom.gov.tr https://www.usom.gov.tr/bildirim/tr-25-0297

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.