Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/06/11 1:21 p.m.15 views

CVE-2025-40669

Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...

7.1CVSS6.4AI score0.00214EPSS
Exploits0References1
NVD
NVD
added 2025/06/09 1:15 p.m.10 views

CVE-2025-40669

Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...

7.1CVSS0.00214EPSS
Exploits0References1
OSV
OSV
added 2025/06/09 1:15 p.m.1 views

CVE-2025-40669

Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...

6.5CVSS5.8AI score0.00214EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/06/09 12:26 p.m.5 views

CVE-2025-40669 Incorrect Authorization vulnerability in TCMAN GIM

Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1...

7.1CVSS6.6AI score0.00214EPSS
Exploits0References1
CVE
CVE
added 2025/06/09 12:26 p.m.55 views

CVE-2025-40669

CVE-2025-40669 affects TCMAN’s GIM v11. The root cause is incorrect authorization, enabling an unprivileged attacker to modify the permissions of all application users, including themselves, by sending a POST to /PC/Options.aspx?Command=2&Page=-1. Reported across multiple sources (NVD, RH, CVE ca...

7.1CVSS6.4AI score0.00214EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder