CVE-2025-12059

CRITICAL 9.8

Improper Access Control in Logo Software's Logo j-Platform

CVSS Score

9.8

EPSS Score

0.1%

EPSS Percentile

20th

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Logo Software Industry and Trade Inc. Logo j-Platform allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Logo j-Platform: from 3.29.6.4 before 3.34.8.9.

CWE	CWE-538
Vendor	logo software industry and trade inc.
Product	logo j-platform
Published	Feb 11, 2026
Last Updated	Jun 4, 2026

Stay Ahead of the Next One

Get instant alerts for logo software industry and trade inc. logo j-platform

Be the first to know when new critical vulnerabilities affecting logo software industry and trade inc. logo j-platform are published — delivered to Slack, Telegram or Discord.

Get Free Alerts → Free · No credit card · 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Affected Versions

Logo Software Industry and Trade Inc. / Logo j-Platform

3.29.6.4 < 3.34.8.9

References

NVD ↗ CVE.org ↗ EPSS Data ↗

usom.gov.tr: https://www.usom.gov.tr/bildirim/tr-26-0061 siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0061

Credits

Enes AYDIN