CVE-2024-12367

Information Disclosure in Vegagrup Software's Vega Master

Description

Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vegagrup Software Vega Master allows Directory Indexing.This issue affects Vega Master: from v.1.12.35 through 20250916. NOTE: The vendor did not inform about the completion of the fixing process within the specified time. The CVE will be updated when new information becomes available.

INFO

Published Date :

2025-09-16T07:46:32.825Z

Last Modified :

2025-09-23T07:36:49.773Z

Source :

TR-CERT

AFFECTED PRODUCTS

The following products are affected by CVE-2024-12367 vulnerability.

Vendors	Products
Vegagrup	Vega Master

REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-12367.

URL	Resource
https://www.usom.gov.tr/bildirim/tr-25-0249

CVSS Vulnerability Scoring System

V3.1

Detailed values of each vector for above chart.

Attack Vector

Attack Complexity

Privileges Required

User Interaction

Scope

Confidentiality Impact

Integrity Impact

Availability Impact