CVE-2025-12059

Critical

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Logo Software Industry and Trade Inc. Logo…

TR-CERT·CWE-538·Published 2026-02-11

CVSS

9.8

EPSS

0.00

KEV

Exploits

cve.orgen

291 chars

Insertion of Sensitive Information into Externally-Accessible File or Directory vulnerability in Logo Software Industry and Trade Inc. Logo j-Platform allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Logo j-Platform: from 3.29.6.4 before 3.34.8.9.

NVDen

291 chars

NVDes

330 chars

Vulnerabilidad de inserción de información sensible en un archivo o directorio accesible externamente en Logo Software Industry and Trade Inc. Logo j-Platform permite la explotación de niveles de seguridad de control de acceso configurados incorrectamente. Este problema afecta a Logo j-Platform: desde 3.29.6.4 antes de 3.34.8.9.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	9.8	—	—	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Secondary	NVD	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H