CVE Catalog

CVE-2026-12250

HighCVSS 7.9
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.11%

1th percentile — higher than 1% of all known CVEs

Summary

A vulnerability in Pardus Domain Joiner allows sensitive information to be exposed during process invocation, enabling its extraction. The issue affects versions from 0.5.2 before 0.5.4.

Risk Assessment

The organization is at risk of confidential data leakage, such as passwords or keys, which could lead to unauthorized system access.

Recommendation

Immediately update Pardus Domain Joiner to version 0.5.4 or later, which includes the fix.

Original NVD description (English source)

Invocation of process using visible sensitive information vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Domain Joiner allows Excavation. This issue affects Pardus Domain Joiner: from 0.5.2 before 0.5.4.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS