CVE-2026-5792 PUBLISHED

Authentication Bypass in Related Digital's Related Marketing Cloud (RMC)

Assigner: TR-CERT
Reserved: 08.04.2026 Published: 12.06.2026 Updated: 12.06.2026

Authentication bypass by spoofing vulnerability in Hedef Media Promotion Interactive Media Marketing Inc. Related Marketing Cloud (RMC) allows Brute Force.

This issue affects Related Marketing Cloud (RMC): through 12052026.

Metrics

CVSS 3.1

CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N
CVSS Score: 6.5

Attack Vector	Network	Scope	Unchanged
Attack Complexity	Low	Confidentiality Impact	Low
Privileges Required	None	Integrity Impact	Low
User Interaction	None	Availability Impact	None

CVSS 3.1

Product Status

Vendor	Hedef Media Promotion Interactive Media Marketing Inc.
Product	Related Marketing Cloud (RMC)
Versions	Default: unaffected affected from 0 to 12052026 (incl.)

Credits

Ferit ÖZNER finder

References

https://siberguvenlik.gov.tr/guvenlik-bildirimleri/detay/tr-26-0370

Problem Types

CWE-290 Authentication bypass by spoofing CWE

Impacts

CAPEC-112 Brute Force