EUVD-2021-28006

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

TCMAN GIM has a SQL injection vulnerability in multiple web service methods in /PC/WebService.asmx

Reporter	Title	Published	Views	Family All 6
Circl	CVE-2021-40850	17 Dec 202120:37	–	circl
CNNVD	Tcman Gim SQL注入漏洞	17 Dec 202100:00	–	cnnvd
CVE	CVE-2021-40850	17 Dec 202116:10	–	cve
Cvelist	CVE-2021-40850 TCMAN GIM SQL injection vulnerability	17 Dec 202116:10	–	cvelist
NVD	CVE-2021-40850	17 Dec 202117:15	–	nvd
Prion	Sql injection	17 Dec 202117:15	–	prion

[
  {
    "enisaIdVendor": [
      {
        "id": "35fb7bcb-cd6f-33a4-90c6-d2aa5a2f23a9",
        "vendor": {
          "name": "TCMAN"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "88bd1ecb-1d4c-3975-a2b2-991550edc1c3",
        "product": {
          "name": "GIM"
        },
        "product_version": "11.0"
      },
      {
        "id": "cae333e3-9043-3b19-8824-0a15a5033b9a",
        "product": {
          "name": "GIM"
        },
        "product_version": "8.0"
      }
    ]
  }
]

Source	Link
incibe-cert	www.incibe-cert.es/en/early-warning/security-advisories/tcman-gim-sql-injection-vulnerability

03 Oct 2025 20:07Current

9.2High risk

Vulners AI Score9.2

CVSS 3.19.8 - 10

CVSS 27.5

EPSS0.00264