CVE-2025-8886 MEDIUM

CVE-2025-8886: Authorization Bypass in Usta Information Systems' Aybs Interaktif

Vendor Usta Information Systems Inc.
Product Aybs Interaktif
Weakness CWE-732
Published October 10, 2025
Last update June 5, 2026

CVSS base score

6.7/10
Attack vector Local
Attack complexity High
Privileges required None
User interaction None
Confidentiality High
Integrity High

CVSS vector

CVSS:3.1/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

Incorrect Permission Assignment for Critical Resource, Exposure of Sensitive Information to an Unauthorized Actor, Missing Authorization, Incorrect Authorization vulnerability in Usta Information Systems Inc. Aybs Interaktif allows Privilege Abuse, Authentication Bypass. This issue affects Aybs Interaktif: from 2024 through 28082025.

Key dates

02Disclosure timeline

October 10, 2025 CVE published
June 5, 2026 Record updated