5 matches found
CVE-2025-40669
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...
CVE-2025-40669
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...
CVE-2025-40669
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...
CVE-2025-40669 Incorrect Authorization vulnerability in TCMAN GIM
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...
CVE-2025-40669
CVE-2025-40669 affects TCMAN’s GIM v11. The root cause is incorrect authorization, enabling an unprivileged attacker to modify the permissions of all application users, including themselves, by sending a POST to /PC/Options.aspx?Command=2&Page=-1. Reported across multiple sources (NVD, RH, CVE ca...