Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2025-41012

Unauthorized access vulnerability in TCMAN GIM v11 version 20250304. This vulnerability allows an unauthenticated attacker to determine whether a user exists on the system by using the 'pda:userId' and 'pda:newPassword' parameters with 'soapaction UnlockUser’ in '/WS/PDAWebService.asmx'.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.2%
CVSS Severity
CVSS v3 Score 5.3
Products affected by CVE-2025-41012
  • Tcman » Gim » Version: 11.0
    cpe:2.3:a:tcman:gim:11.0
  • Tcman » Gim » Version: 8.0
    cpe:2.3:a:tcman:gim:8.0
  • Tcman » Gim » Version: 8.0.1
    cpe:2.3:a:tcman:gim:8.0.1
  • Tcman » Gim » Version: 8.01
    cpe:2.3:a:tcman:gim:8.01


Products
Pricing
Contact Us

Shodan ® - All rights reserved