CVE-2025-10465HIGH 8.8EPSS p30.6%

CVE-2025-10465CVE-2025-10465

Description

Unrestricted Upload of File with Dangerous Type vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co. Sensaway allows Upload a Web Shell to a Web Server. This issue affects Sensaway: through 09022026. NOTE: Because the product was developed using outdated technology, the manufacturer is unable to fix the relevant vulnerabilities. Users of the Sensaway application are advised to contact the manufacturer and review updated products developed with newer technology.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS0.39% probability of exploitation · percentile 30.6% · 2026-06-19T12:03:05Z
Published2026-02-09
Last modified2026-06-05

Underlying weaknesses· 1

CWE-434

References

  1. https://www.usom.gov.tr/bildirim/tr-26-0022

1

TypeTargetConfidenceTier
WeaknessUnrestricted Upload of File with Dangerous Typecwe-4340%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2025-10464
CVE
CVE-2025-10463
CVE
CVE-2025-14849
CVE
CVE-2025-68549
CVE
CVE-2026-27067
CVE
CVE-2025-15228
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.