Missing Authorization Vulnerability in Liman MYS by HAVELSAN Inc.
CVE-2026-11340

8.3HIGH

Key Information:

Status
Vendor
CVE Published:
7 July 2026

What is CVE-2026-11340?

A missing authorization vulnerability exists in Liman MYS developed by HAVELSAN Inc., allowing unauthorized access to functionalities not properly protected by Access Control Lists (ACLs). This flaw impacts earlier versions, specifically before release.Master.1107, and can potentially lead to unauthorized actions being carried out by users without the necessary permissions. Proper validation of access controls is critical to maintaining application security.

Affected Version(s)

Liman MYS 0

References

CVSS V3.1

Score:
8.3
Severity:
HIGH
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Akıner KISA
.