CVE-2026-5140

· NIST NVD ↗

Improper neutralization of CRLF sequences ('CRLF injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus Update allows Authentication Bypass. This issue affects Pardus Update: from 0.6.3 before 0.6.4.

HIGH
CVSS severity
8.8
CVSS base score
2026-04-29
Published

CWE codes

CWE-93

Sources