Authorization Bypass Vulnerability in Bimser Solution Software's EBA Document Management System
CVE-2025-8532

6.4MEDIUM

Key Information:

Vendor

Bimser Solution Software Trade Inc.

Status
Eba Document And Workflow Management System
Vendor
CVE Published:
19 September 2025

What is CVE-2025-8532?

An authorization bypass vulnerability exists in Bimser Solution Software's EBA Document and Workflow Management System. This flaw allows unauthorized users to manipulate trusted identifiers, thereby gaining access to restricted functionalities. The issue arises from missing authorization checks, enabling attackers to exploit variable manipulation techniques. Affected versions include 6.7.164 up to, but not including, 6.7.166, making it imperative for users to update their systems to mitigate security risks.

Affected Version(s)

eBA Document and Workflow Management System 6.7.164 < 6.7.166

References

https://www.usom.gov.tr/bildirim/tr-25-0280

CVSS V3.1

Score:
6.4
Severity:
MEDIUM
Confidentiality:
Low
Integrity:
High
Availability:
Low
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Aysun EYÄ°Z
.
CVE-2025-8532 : Authorization Bypass Vulnerability in Bimser Solution Software's EBA Document Management System