<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>HAVELSAN Inc. - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/vendors/havelsan-inc./</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Tue, 07 Jul 2026 12:25:36 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/vendors/havelsan-inc./feed.xml" rel="self" type="application/rss+xml"/><item><title>CVE-2026-13696: HAVELSAN Liman MYS LDAP Injection Vulnerability</title><link>https://feed.craftedsignal.io/briefs/2026-07-cve-2026-13696-havelsan-liman-mys-ldap-injection/</link><pubDate>Tue, 07 Jul 2026 12:25:36 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-cve-2026-13696-havelsan-liman-mys-ldap-injection/</guid><description>A high-severity LDAP injection vulnerability, tracked as CVE-2026-13696 with a CVSS v3.1 base score of 8.8, affects HAVELSAN Inc.'s Liman MYS versions prior to release.Master.1107, allowing attackers to bypass authentication or exfiltrate sensitive data via improper neutralization of special characters in LDAP queries.</description><content:encoded><![CDATA[<p>A critical LDAP injection vulnerability, identified as CVE-2026-13696, has been discovered in HAVELSAN Inc.'s Liman MYS administrative management system. This flaw stems from improper neutralization of special characters within LDAP queries, allowing attackers to manipulate or inject malicious LDAP statements. Such an injection could lead to unauthorized authentication bypass, data exfiltration from the LDAP directory, or alteration of user and group information. The vulnerability affects all versions of Liman MYS prior to <code>release.Master.1107</code>. With a CVSS v3.1 Base Score of 8.8, this vulnerability poses a significant risk, as successful exploitation could grant attackers extensive control over user management and potentially lead to broader system compromise. This issue was published on 2026-07-07, and organizations using affected versions are urged to apply the patch immediately to mitigate these severe risks.</p>
<h2 id="impact">Impact</h2>
<p>Successful exploitation of CVE-2026-13696 could allow an unauthenticated attacker to bypass authentication mechanisms, gain unauthorized access to the Liman MYS system, and potentially the underlying LDAP directory. This could lead to information disclosure, unauthorized modification of user accounts, groups, and permissions, or even full administrative compromise of the directory service. The highly sensitive nature of LDAP directories means that compromise could have widespread effects on user management, access control across multiple integrated systems, and lead to significant data breaches or operational disruption.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch CVE-2026-13696 on all HAVELSAN Inc. Liman MYS instances immediately by upgrading to <code>release.Master.1107</code> or later.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>vulnerability</category><category>ldap-injection</category><category>web-application</category></item><item><title>CVE-2026-11348: HAVELSAN Liman MYS Cryptographic Signature Bypass Vulnerability</title><link>https://feed.craftedsignal.io/briefs/2026-07-cve-2026-11348-liman-mys-signature-bypass/</link><pubDate>Tue, 07 Jul 2026 12:25:00 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-cve-2026-11348-liman-mys-signature-bypass/</guid><description>A critical improper verification of cryptographic signature vulnerability, tracked as CVE-2026-11348, in HAVELSAN Inc.'s Liman MYS product allows an unauthenticated attacker to fake the source of data, leading to potential data integrity compromise.</description><content:encoded><![CDATA[<p>A significant vulnerability, CVE-2026-11348, has been identified in HAVELSAN Inc.'s Liman MYS product. This flaw stems from an improper verification of cryptographic signatures, which an attacker can exploit to fake the origin of data. The vulnerability, first disclosed by the Computer Emergency Response Team of the Republic of Turkey, impacts all versions of Liman MYS released prior to <code>release.Master.1107</code>. While specific details of in-the-wild exploitation are not yet public, such a vulnerability allows malicious actors to potentially inject falsified information into systems or bypass authentication mechanisms that rely on cryptographic signatures. This could lead to data manipulation, unauthorized access, or other integrity compromises within environments utilizing Liman MYS.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li><strong>Attacker Crafts Malicious Data</strong>: An unauthenticated attacker creates data intended to be malicious (e.g., altered configuration, spoofed commands, or falsified reports).</li>
<li><strong>Attacker Forges Cryptographic Signature</strong>: The attacker generates a cryptographic signature for the malicious data that appears legitimate but is actually forged.</li>
<li><strong>Attacker Submits Crafted Payload</strong>: The attacker sends the malicious data bundle, including the forged signature, to a vulnerable HAVELSAN Liman MYS instance.</li>
<li><strong>Liman MYS Processes Incoming Data</strong>: The application receives the data and attempts to validate its authenticity by verifying the accompanying cryptographic signature.</li>
<li><strong>Signature Verification Bypass (CVE-2026-11348)</strong>: Due to the inherent flaw in the signature verification logic (CWE-347), Liman MYS fails to correctly identify the forged signature as invalid.</li>
<li><strong>Data Accepted as Legitimate</strong>: The Liman MYS application mistakenly authenticates and accepts the malicious data as originating from a trusted or authorized source.</li>
<li><strong>Application Processes Faked Data</strong>: The application proceeds to process the attacker-controlled data, believing it to be genuine and reliable.</li>
<li><strong>Impact Realized</strong>: The faked data is then integrated into the system, leading to consequences such as data integrity compromise, execution of unauthorized commands, or other logical abuses depending on the attacker's specific objective.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>This vulnerability allows an attacker to &quot;fake the source of data,&quot; meaning they can potentially inject arbitrary malicious information into the Liman MYS system, bypass integrity checks, or spoof legitimate entities. The CVSS v3.1 base score of 8.1 (High) indicates significant potential for impact, including high confidentiality, integrity, and availability impacts, if successfully exploited. Organizations using affected versions of HAVELSAN Liman MYS could face data corruption, unauthorized system behavior, or loss of trust in the data managed by the platform. Without immediate patching, affected systems remain vulnerable to external manipulation, potentially impacting operational reliability and security.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch CVE-2026-11348 immediately by updating HAVELSAN Liman MYS to <code>release.Master.1107</code> or a newer version as advised by the vendor.</li>
<li>Review the vendor advisory at <a href="https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0504">https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0504</a> for further guidance and details on the patch.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">threat</category><category>vulnerability</category><category>cryptographic-vulnerability</category><category>liman-mys</category></item><item><title>CVE-2026-11340 — Missing Authorization in HAVELSAN Liman MYS</title><link>https://feed.craftedsignal.io/briefs/2026-07-cve-2026-11340-liman-mys/</link><pubDate>Tue, 07 Jul 2026 11:18:52 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-cve-2026-11340-liman-mys/</guid><description>A missing authorization vulnerability (CVE-2026-11340) in HAVELSAN Inc. Liman MYS versions prior to release.Master.1107 allows an attacker with low privileges to access functionality not properly constrained by ACLs, leading to high impact on integrity and availability.</description><content:encoded><![CDATA[<p>A critical missing authorization vulnerability, identified as CVE-2026-11340, has been disclosed in HAVELSAN Inc.'s Liman MYS, affecting all versions before release.Master.1107. This flaw stems from the application's failure to properly constrain access to certain functionalities by Access Control Lists (ACLs). This means that a low-privileged authenticated attacker could potentially access and manipulate features or data that should be restricted to higher-privileged users. With a CVSS v3.1 base score of 8.3 (High), this vulnerability poses a significant risk of high impact to data integrity and system availability, and low impact to confidentiality, if exploited. Defenders should prioritize patching this vulnerability to prevent unauthorized access and potential system compromise.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker, possessing valid low-privileged credentials, identifies a vulnerable HAVELSAN Liman MYS instance (versions prior to release.Master.1107).</li>
<li>The attacker authenticates to the Liman MYS web interface using their legitimate low-privileged account.</li>
<li>The attacker then crafts a request or navigates to a specific sensitive function or resource that should typically be restricted by ACLs to higher-privileged users.</li>
<li>Due to the missing authorization vulnerability (CVE-2026-11340), the Liman MYS application fails to adequately verify the attacker's authorization level for the requested resource or action.</li>
<li>The application incorrectly grants the low-privileged attacker access to the restricted functionality or data, bypassing intended security controls.</li>
<li>The attacker can then perform unauthorized actions, such as modifying critical system configurations, accessing sensitive information, or triggering disruptive operations.</li>
<li>This unauthorized access ultimately leads to high impact on the system's integrity (e.g., data tampering, unauthorized changes) and availability (e.g., service disruption), with a low impact on confidentiality.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>The exploitation of CVE-2026-11340 can lead to severe consequences for organizations utilizing HAVELSAN Inc. Liman MYS. While specific victim counts are not available, successful exploitation by a low-privileged attacker could result in high impact to the integrity of the system and data, allowing for unauthorized modifications or deletions. Additionally, the availability of critical services could be severely affected, potentially leading to denial of service conditions. Confidentiality is also impacted, albeit at a lower level, as unauthorized data access might occur. Given Liman MYS's role, such compromise could disrupt operational management and expose sensitive internal configurations.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Immediately apply the patch to update HAVELSAN Liman MYS to release.Master.1107 or a later secure version to remediate CVE-2026-11340.</li>
<li>Enable comprehensive web application logging on your HAVELSAN Liman MYS instances to capture all HTTP requests, including request methods, URIs, user agents, and source IP addresses, to aid in detecting abnormal access patterns.</li>
<li>Regularly audit Access Control Lists (ACLs) and authorization configurations within Liman MYS to ensure they align with the principle of least privilege and prevent similar authorization bypasses.</li>
</ul>
]]></content:encoded><category domain="severity">high</category><category domain="type">advisory</category><category>vulnerability</category><category>web-application</category><category>missing-authorization</category><category>cve</category></item></channel></rss>