Cyber Resilience

CVE-2025-7631

HighUpdated

Published: 17 February 2026

Published
17 February 2026
Modified
05 June 2026
KEV Added
Patch
CVSS Score v3.1 8.6 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H
EPSS Score 0.0027 18.8th percentile
Risk Priority 55 floored blend · peak EPSS

Summary

CVE-2025-7631 is a high-severity SQL Injection (CWE-89) vulnerability in Gov (inferred from references). Its CVSS base score is 8.6 (High).

Operationally, exploitation aligns with the MITRE ATT&CK technique Exploit Public-Facing Application (T1190); ranked at the 18.8th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

The strongest mitigations our analysis identified are NIST 800-53 SI-10 (Information Input Validation) and SI-2 (Flaw Remediation).

Deeper analysis

CVE-2025-7631 is an SQL Injection vulnerability (CWE-89) due to improper neutralization of special elements in an SQL command. It affects Tumeva Prime News Software developed by Tumeva Internet Technologies Software Information Advertising and Consulting Services Trade Ltd. Co., specifically versions from v1.0.1 before v1.0.2. The vulnerability has a CVSS v3.1 base score of 8.6 (AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H), indicating high severity with network accessibility, low attack complexity, no required privileges or user interaction, and impacts including low confidentiality and integrity effects alongside high availability disruption.

Unauthenticated attackers with network access can exploit this vulnerability remotely by injecting malicious SQL payloads into affected components of Tumeva Prime News Software. Successful exploitation allows partial unauthorized access to sensitive data (low confidentiality), limited modification of data or behavior (low integrity), and significant denial-of-service conditions such as resource exhaustion or service crashes (high availability).

The vulnerability is detailed in an advisory from the Turkish National Cyber Incident Response Center (USOM) at https://www.usom.gov.tr/bildirim/tr-26-0067. Mitigation involves upgrading to Tumeva Prime News Software version v1.0.2 or later, as the issue is fixed in that release.

OWASP Top 10 for Web (2025)

EU & UK References

Vulnerability details

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Tumeva Internet Technologies Software Information Advertising and Consulting Services Trade Ltd. Co. Tumeva Prime News Software allows SQL Injection. This issue affects Tumeva Prime News Software:…

more

from v.1.0.1 before v1.0.2.

CWE(s)

Related Threats

MITRE ATT&CK Enterprise TechniquesAI

T1190 Exploit Public-Facing Application Initial Access
Adversaries may attempt to exploit a weakness in an Internet-facing host or system to initially access a network.
Why these techniques?

SQL injection in a publicly accessible web application directly enables remote exploitation via T1190 (Exploit Public-Facing Application).

Confidence: HIGH · MITRE ATT&CK Enterprise v19.0

CVEs Like This One

CVE-2026-24956Shared CWE-89
CVE-2026-33615Shared CWE-89
CVE-2025-28939Shared CWE-89
CVE-2021-47872Shared CWE-89
CVE-2025-28873Shared CWE-89
CVE-2019-25636Shared CWE-89
CVE-2026-32611Shared CWE-89
CVE-2026-42755Shared CWE-89
CVE-2024-53544Shared CWE-89
CVE-2026-21410Shared CWE-89

Affected Assets

Gov
inferred from references and description; NVD did not file a CPE for this CVE

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Information input validation directly prevents SQL injection by checking and neutralizing special elements in inputs at application entry points.

prevent

Flaw remediation requires timely patching of known vulnerabilities like CVE-2025-7631, fixed in Tumeva Prime News Software v1.0.2.

prevent

Public access protections invoke safeguards such as web application firewalls to block SQL injection attempts on publicly accessible news software interfaces.

References