CVE Catalog
CVE-2026-6509
HighCVSS 7.8Exploitation Probability (EPSS)
Low risk0.10%
1th percentile — higher than 1% of all known CVEs
Summary
Missing authorization in Pardus Update allows privilege escalation. The vulnerability affects versions 0.6.3 and earlier, before version 0.6.6.
Risk Assessment
An attacker can exploit the missing authorization to gain elevated privileges on the system, potentially leading to full device compromise.
Recommendation
Immediately update Pardus Update to version 0.6.6 or later, which includes the necessary security fixes.
Original NVD description (English source)
Missing Authorization vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Update allows Privilege Escalation. This issue affects Pardus Update: from <=0.6.3 before 0.6.6.

