Security Advisory

CVE-2025-41013

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-12-02 13:13:57

Last updated 2025-12-02 14:22:40

Assigner INCIBE

State PUBLISHED

Description

SQL injection vulnerability in TCMAN GIM v11 in version 20250304. This vulnerability allows an attacker to retrieve, create, update, and delete databases by sending a GET request using the idmant parameter in /PC/frmEPIS.aspx.

← Browse all CVEs View on cve.org ↗