Authorization Bypass in Yordam Library Automation System by Yordam Information Technology
CVE-2025-15025

8.8HIGH

Key Information:

Vendor: Yordam Information Technology Consulting, Training And Electronic Systems Industry And Trade Inc.
Status: Library Automation System
Vendor: CVE Published:; 14 May 2026

🔔 Create Yordam Information Technology Consulting, Training And Electronic Systems Industry And Trade Inc. Vulnerability Alert

What is CVE-2025-15025?

An authorization bypass vulnerability was identified in the Library Automation System developed by Yordam Information Technology, allowing unauthorized users to exploit trusted identifiers. This flaw could potentially enable attackers to manipulate system functions and gain unauthorized access to sensitive operations. The vulnerability affects all versions between 21.6 and 22.1, highlighting the importance of updating to the latest release to mitigate risks.

Affected Version(s)

Library Automation System v.21.6

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/...

government-resource

CVSS V3.1

Score:

8.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
Dec 22, 2025

Credit

Serdar ÇATAL

CVE-2025-15025 Data

JSON