[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"public-cve-CVE-2026-11839":3,"news-by-cve-CVE-2026-11839-10":58},{"vendor_context":4,"in_kev":5,"affected_products_preview":6,"tags":10,"attack_techniques":11,"attack_tactics":31,"has_nuclei_templates":5,"assigner_org":32,"nvd_cvss_severity":32,"exploit_count":33,"has_ai_summary":5,"assigner_short_name":32,"cvss_source":34,"has_solution":5,"has_workaround":5,"reference_count":35,"remediation_summary":36,"title":37,"attack_technique_count":38,"state":39,"date_updated":40,"source_identifier":41,"cvss_score":42,"kev_ransomware_use":5,"has_exploit":5,"sources":43,"id":44,"references_preview":45,"date_published":40,"cvss_vector":48,"nuclei_template_count":33,"has_attack_graph":49,"cvss_version":50,"cvss_severity":51,"nvd_cvss_vector":32,"affected_product_count":35,"description":52,"weaknesses":53,"sectors":57},[],false,[7],{"product":8,"vendor":9},"Rotaban","Başarsoft Information Technologies Inc.",[],[12,19,25],{"tactic":13,"tactic_name":14,"url":15,"confidence":16,"technique_id":17,"technique_name":18},"command-and-control","Command and Control","https://attack.mitre.org/techniques/T1105/","high","T1105","Ingress Tool Transfer",{"tactic_name":20,"url":21,"confidence":16,"technique_id":22,"technique_name":23,"tactic":24},"Initial Access","https://attack.mitre.org/techniques/T1190/","T1190","Exploit Public-Facing Application","initial-access",{"technique_name":26,"tactic":27,"tactic_name":28,"url":29,"confidence":16,"technique_id":30},"Server Software Component","persistence","Persistence","https://attack.mitre.org/techniques/T1505/","T1505",[14,20,28],"",0,"cvelist",1,{"has_patch":5,"has_workaround":5},"Arbitrary File Upload in Basarsoft's Rotaban",3,"PUBLISHED","2026-06-11T14:30:50Z","ca940d4e-fea4-4aa2-9a58-591a58b1ce21",9.9,[34],"CVE-2026-11839",[46],{"url":47,"source":34},"https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0367","CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",true,"3.1","CRITICAL","Unrestricted upload of file with dangerous type vulnerability in Başarsoft Information Technologies Inc. Rotaban allows Upload a Web Shell to a Web Server.\n\nThis issue affects Rotaban: from V2026.06.002 before V2026.06.003.",[54],{"cwe_id":55,"name":56},"CWE-434","CWE-434 Unrestricted upload of file with dangerous type",[],{"cve_id":44,"items":59,"total":33},[]]