CVE-2026-9085
HIGHDNS Hijacking in TUBITAK BILGEM's Pardus-Parental-Control
Title source: cnaDescription
Incorrect Permission Assignment for Critical Resource, Improper Access Control vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus-Parental-Control allows DNS Spoofing. This issue affects Pardus-Parental-Control: from <=0.5.1 before 0.7.0.
References (1)
Core 1
Core References
Government Resource government-resource
https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0500
Scores
CVSS v3
8.8
EPSS
0.0010
EPSS Percentile
1.1%
Attack Vector
LOCAL
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
total
Details
CWE
CWE-284
CWE-732
Status
published
Products (1)
TUBITAK BILGEM Software Technologies Research Institute/Pardus-Parental-Control
<=0.5.1 - 0.7.0
Published
Jul 05, 2026
Tracked Since
Jul 05, 2026