πŸ” CVE Alert

CVE-2026-8025

CRITICAL 9.8

SQLi in MOSK Informatics' CBS Platform

CVSS Score
9.8
EPSS Score
0.0%
EPSS Percentile
0th

Improper neutralization of special elements used in an SQL command ('SQL injection') vulnerability in MOSK Information Technologies Ltd. CBS Platform allows SQL Injection. This issue affects CBS Platform: through 09062026.Β Β NOTE: The vendor was contacted and it was learned that the product is not supported.

CWE CWE-89
Vendor mosk information technologies ltd.
Product cbs platform
Published Jun 9, 2026
Last Updated Jun 9, 2026
Stay Ahead of the Next One

Get instant alerts for mosk information technologies ltd. cbs platform

Be the first to know when new critical vulnerabilities affecting mosk information technologies ltd. cbs platform are published β€” delivered to Slack, Telegram or Discord.

Get Free Alerts β†’ Free Β· No credit card Β· 60 sec setup

CVSS v3 Breakdown

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
High
Integrity
High
Availability
High

Affected Versions

MOSK Information Technologies Ltd. / CBS Platform
0 ≀ 09062026

References

NVD β†— CVE.org β†— EPSS Data β†—
siberguvenlik.gov.tr: https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0344

Credits

Mehmet Abdullah ADBAY