OTP Bypass in Başbelen Group's Pause+ Mobile App
CVE-2026-6853

9.8CRITICAL

Key Information:

Vendor: Başbelen Group Food Cafe Businesses Industry And Trade Ltd. Co.
Status: Pause+ Mobile App
Vendor: CVE Published:; 12 June 2026

🔔 Create Başbelen Group Food Cafe Businesses Industry And Trade Ltd. Co. Vulnerability Alert

What is CVE-2026-6853?

Improper restriction of excessive authentication attempts vulnerability in Başbelen Group Food Cafe Businesses Industry and Trade Ltd. Co. Pause+ Mobile App allows Authentication Bypass.

This issue affects Pause+ Mobile App: from v1.0.6 before v1.5.

Affected Version(s)

Pause+ Mobile App v1.0.6

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/...

government-resource

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jun 12, 2026
Vulnerability Reserved
Apr 22, 2026

Credit

Oğuz DAVUTOĞLU

CVE-2026-6853 Data

JSON