CVE-2025-13506

HIGH

Nebim V3 ERP <3.0.1 - Privilege Escalation

Title source: llm

Description

Execution with Unnecessary Privileges vulnerability in Nebim Neyir Computer Industry and Services Inc. Nebim V3 ERP allows Expanding Control over the Operating System from the Database.This issue affects Nebim V3 ERP: from 2.0.59 before 3.0.1.

References (1)

[Third Party Advisory, US Government Resource] https://www.usom.gov.tr/bildirim/tr-25-0450

Scores

CVSS v3 8.8

EPSS 0.0012

EPSS Percentile 31.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact total

Details

CWE

CWE-250

Status published

Products (1)

Nebim Neyir Computer Industry and Services Inc./Nebim V3 ERP 2.0.59 - 3.0.1

Published Dec 12, 2025

Tracked Since Feb 18, 2026