CVE-2025-8057

MEDIUM

Patika Global Technologies HumanSuite <53.21.0 - Auth Bypass

Title source: llm

Description

Authorization Bypass Through User-Controlled Key, Externally Controlled Reference to a Resource in Another Sphere, Improper Authorization vulnerability in Patika Global Technologies HumanSuite allows Exploiting Trust in Client.This issue affects HumanSuite: before 53.21.0.

References (1)

[Third Party Advisory, US Government Resource] https://www.usom.gov.tr/bildirim/tr-25-0257

Scores

CVSS v3 6.5

EPSS 0.0004

EPSS Percentile 12.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-285 CWE-610 CWE-639

Status published

Products (1)

Patika Global Technologies/HumanSuite < 53.21.0

Published Sep 16, 2025

Tracked Since Feb 18, 2026