CVE Catalog

CVE-2026-6509

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.10%

1th percentile — higher than 1% of all known CVEs

Summary

Missing authorization in Pardus Update allows privilege escalation. The vulnerability affects versions 0.6.3 and earlier, before version 0.6.6.

Risk Assessment

An attacker can exploit the missing authorization to gain elevated privileges on the system, potentially leading to full device compromise.

Recommendation

Immediately update Pardus Update to version 0.6.6 or later, which includes the necessary security fixes.

Original NVD description (English source)

Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Update allows Privilege Escalation. This issue affects Pardus Update: from <=0.6.3 before 0.6.6.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS