CVE-2025-13295

7.5 HIGH

Insertion of Sensitive Information Into Sent Data vulnerability in Argus Technology Inc

Published: 2025-12-02 · Last updated: 2026-06-04

Severity and scoring

CVSS: 7.5 HIGH
Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CWE: CWE-201

Affected products

Vendor	Product
argusteknoloji	bilger

Description

Insertion of Sensitive Information Into Sent Data vulnerability in Argus Technology Inc. BILGER allows Choosing Message Identifier. This issue affects BILGER: before 2.4.9.

Source: NVD

References

[NVD]https://nvd.nist.gov/vuln/detail/CVE-2025-13295
[Other]https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-25-0423
[Vendor advisory]https://www.usom.gov.tr/bildirim/tr-25-0423

Related CVEs

Same CWE

CVE-2026-54197 — Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions (6.5 MEDIUM)
CVE-2026-52695 — Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout <= 1.8.2 versions (7.5 HIGH)
CVE-2026-52692 — Unauthenticated Sensitive Data Exposure in Affiliates Manager <= 2.9.50 versions (7.5 HIGH)
CVE-2026-49082 — Subscriber Sensitive Data Exposure in Chatway Live Chat – AI Chatbot, Customer Support, FAQ & Helpdesk Customer Service & C... (7.4 HIGH)
CVE-2026-48965 — Subscriber Sensitive Data Exposure in XCloner <= 4.8.6 versions (6.5 MEDIUM)