CVE-2025-41015 | TCMAN GIM 20250304 /WS/PDAWebService.asmx GetUserQuestionAndAnswer pda:username information disclosure

Inserito da Angelo Barbosa | Dic 2, 2025 | CVE

A vulnerability was found in TCMAN GIM 20250304. It has been classified as problematic. Affected by this vulnerability is the function GetUserQuestionAndAnswer of the file /WS/PDAWebService.asmx. Performing manipulation of the argument pda:username results in information disclosure.

This vulnerability is cataloged as CVE-2025-41015. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-41015 | TCMAN GIM 20250304 /WS/PDAWebService.asmx GetUserQuestionAndAnswer pda:username information disclosure

Post correlati

CVE-2023-50379 | Apache Ambari up to 2.7.7 Request code injection

CVE-2024-11624 | Google Android VPN permission

CVE-2024-44285 | Apple tvOS Kernel Memory use after free

CVE-2025-47228 | Netmake ScriptCase up to 9.12.006 (23) Production Environment Extension os command injection