Medium severity6.5NVD Advisory· Published Jun 9, 2025· Updated Jun 17, 2026
CVE-2025-40669
CVE-2025-40669
Description
Incorrect authorization vulnerability in TCMAN's GIM v11. This vulnerability allows an unprivileged attacker to modify the permissions held by each of the application's users, including the user himself by sending a POST request to /PC/Options.aspx?Command=2&Page=-1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2Patches
Vulnerability mechanics
References
1- www.incibe.es/en/incibe-cert/notices/aviso/multiple-vulnerabilities-tcman-gim-1nvdThird Party Advisory
News mentions
0No linked articles in our index yet.