Authorization Bypass in DijiDemi by Im Park Information Technology
CVE-2026-6008

6.8MEDIUM

Key Information:

Vendor: Im Park Information Technology, Electronics, Press, Publishing And Advertising, Education Ltd. Co.
Status: Dijidemi
Vendor: CVE Published:; 14 May 2026

🔔 Create Im Park Information Technology, Electronics, Press, Publishing And Advertising, Education Ltd. Co. Vulnerability Alert

What is CVE-2026-6008?

An authorization bypass vulnerability has been identified in DijiDemi, a product by Im Park Information Technology. This flaw allows attackers to bypass authentication mechanisms, leading to potential privilege abuse. The issue affects versions from v4.5.12.1 up to but not including v4.5.13.0, potentially enabling unauthorized users to perform actions that should be restricted.

Affected Version(s)

DijiDemi v4.5.12.1

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/...

government-resource

CVSS V3.1

Score:

6.8

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
May 14, 2026
Vulnerability Reserved
Apr 9, 2026

Credit

Muhammet Emirhan SÜMER

CVE-2026-6008 Data

JSON