Hard-coded Credentials Vulnerability in SoliClub by Utarit Information Services
CVE-2025-1029

7.5HIGH

Key Information:

Vendor: Utarit Information Services Inc.
Status: Soliclub
Vendor: CVE Published:; 18 December 2025

🔔 Create Utarit Information Services Inc. Vulnerability Alert

What is CVE-2025-1029?

A vulnerability exists in the SoliClub application developed by Utarit Information Services Inc., where hard-coded credentials allow unauthorized access to sensitive constants stored within an executable. This issue impacts versions from 5.2.4 up to and including 5.3.6, posing significant security risks to users by potentially exposing sensitive data and compromising the integrity of the application.

Affected Version(s)

SoliClub 5.2.4 < 5.3.7

References

https://www.usom.gov.tr/bildirim/tr-25-0466

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 18, 2025
Vulnerability Reserved
Feb 4, 2025

Credit

Mustafa Anıl YILDIRIM

JSON