CVE-2025-8855

High CVSS: 8.1

Authorization Bypass Through User-Controlled Key, Weak Password Recovery Mechanism for Forgotten Password, Authentication Bypass by Assumed-Immutable Data vulnerability in Optimus Software Brokerage Automation allows Exploiting Trust in Client, Authentication Bypass, Manipulate Registry Information.This issue affects Brokerage Automation: before 1.1.71.

Vendor

Product

CWE

CWE-302

Yayın Tarihi

2025-11-14 13:15:45

Güncelleme

2025-11-14 16:42:03

Source Identifier

iletisim@usom.gov.tr

KEV Date Added

Kategoriler

CWE-302 HIGH 2025

Referanslar

https://www.usom.gov.tr/bildirim/tr-25-0396