CVE-2025-10856

HIGH 8.1

Arbitrary File Upload in Solvera Software's Teknoera

CVSS Score

8.1

EPSS Score

0.0%

EPSS Percentile

5th

Unrestricted Upload of File with Dangerous Type vulnerability in Solvera Software Services Trade Inc. Teknoera allows File Content Injection. This issue affects Teknoera: through 01102025.

CWE	CWE-434
Vendor	solvera software services trade inc.
Product	teknoera
Published	Jan 22, 2026
Last Updated	Jun 5, 2026

Stay Ahead of the Next One

Get instant alerts for solvera software services trade inc. teknoera

Be the first to know when new high vulnerabilities affecting solvera software services trade inc. teknoera are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

None

Affected Versions

Solvera Software Services Trade Inc. / Teknoera

0 ≤ 01102025

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-26-0003 siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0003

Credits

Ahmet Umut OĞURLU