CVE-2026-5140
HIGH
NVD
CVSS Score
8.8
Severity
HIGH
Published
Apr 29, 2026
Vendor
unknown
Description
Improper neutralization of CRLF sequences ('CRLF injection') vulnerability in TUBITAK BILGEM Software Technologies Research Institute Pardus allows Authentication Bypass. This issue affects Pardus: from <=0.6.4 before 0.8.0.