Remote Code Inclusion Vulnerability in Library Automation System by Yordam Information Technology
CVE-2025-15024

8.8HIGH

Key Information:

Vendor: Yordam Information Technology Consulting, Training And Electronic Systems Industry And Trade Inc.
Status: Library Automation System
Vendor: CVE Published:; 14 May 2026

🔔 Create Yordam Information Technology Consulting, Training And Electronic Systems Industry And Trade Inc. Vulnerability Alert

What is CVE-2025-15024?

A remote code inclusion vulnerability exists in the Library Automation System developed by Yordam Information Technology, allowing an attacker to execute arbitrary code remotely. This security flaw affects versions from v19.5 up to but not including v22.1, highlighting the necessity for immediate updates and patches to safeguard against potential exploitation.

Affected Version(s)

Library Automation System v.19.5

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/...

government-resource

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
Dec 22, 2025

Credit

anonymous

CVE-2025-15024 Data

JSON