CVE Catalog
CVE-2026-12250
HighCVSS 7.9Exploitation Probability (EPSS)
Low risk0.11%
1th percentile — higher than 1% of all known CVEs
Summary
A vulnerability in Pardus Domain Joiner allows sensitive information to be exposed during process invocation, enabling its extraction. The issue affects versions from 0.5.2 before 0.5.4.
Risk Assessment
The organization is at risk of confidential data leakage, such as passwords or keys, which could lead to unauthorized system access.
Recommendation
Immediately update Pardus Domain Joiner to version 0.5.4 or later, which includes the fix.
Original NVD description (English source)
Invocation of process using visible sensitive information vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner allows Excavation. This issue affects Pardus Domain Joiner: from 0.5.2 before 0.5.4.

