CVE-2025-11959 HIGH

CVE-2025-11959: Improper Access Control in Premierturk's Excavation Management Information System

Vendor Premierturk Information Technologies Inc.

Product Excavation Management Information System

Weakness CWE-552 · Files accessible externally

Published November 11, 2025

Last update June 4, 2026

View on NVD All CVEs

CVSS base score

8.1/10

Attack vector Network

Attack complexity Low

Privileges required Low

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

Files or Directories Accessible to External Parties, Exposure of Private Personal Information to an Unauthorized Actor vulnerability in Premierturk Information Technologies Inc. Excavation Management Information System allows Footprinting, Functionality Misuse. This issue affects Excavation Management Information System: before v.10.2025.01.

Key dates

02Disclosure timeline

November 11, 2025 CVE published

June 4, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2025-11959 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/552.html

Related vulnerabilities

Identifiers

CVE CVE-2025-11959

CWE CWE-552

CVSS 8.1 / HIGH

Affected versions