CVE-2025-12059

CRITICAL

Logo j-Platform <3.34.8.9 - Info Disclosure

Title source: llm

Description

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Logo Software Industry and Trade Inc. Logo j-Platform allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Logo j-Platform: from 3.29.6.4 before 3.34.8.9.

References (1)

[Third Party Advisory, US Government Resource] https://www.usom.gov.tr/bildirim/tr-26-0061

Scores

CVSS v3 9.8

EPSS 0.0006

EPSS Percentile 17.3%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Classification

CWE

CWE-538

Status draft

Timeline

Published Feb 11, 2026

Tracked Since Feb 18, 2026