CVE-2025-8884
MEDIUMVHS Electronic Software Ltd. Co. ACE Center <3.10.161.2255 - Privil...
Title source: llmDescription
Authorization Bypass Through User-Controlled Key vulnerability in VHS Electronic Software Ltd. Co. ACE Center allows Privilege Abuse, Exploitation of Trusted Identifiers. This issue affects ACE Center: from 3.10.100.1768 before 3.10.161.2255.
References (2)
Core 2
Core References
Third Party Advisory, US Government Resource government-resource
broken-link
https://www.usom.gov.tr/bildirim/tr-25-0348
Government Resource government-resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0348
Scores
CVSS v3
5.5
EPSS
0.0016
EPSS Percentile
5.0%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-639
Status
published
Products (1)
VHS Electronic Software Ltd. Co./ACE Center
3.10.100.1768 - 3.10.161.2255
Published
Oct 20, 2025
Tracked Since
Feb 18, 2026