Lucene search
K

76 matches found

RedhatCVE
RedhatCVE
added 2025/03/06 2:42 a.m.17 views

CVE-2025-26318

hb.exe in TSplus Remote Access before 17.30 2024-10-30 allows remote attackers to retrieve a list of all domain accounts currently connected to the application...

5.8CVSS6AI score0.00836EPSS
Exploits1References1
CVE
CVE
added 2025/03/04 12:0 a.m.54 views

CVE-2025-26318

CVE-2025-26318 affects TSplus Remote Access (hb.exe) prior to version 17.30, enabling remote attackers to retrieve a list of domain accounts currently connected to the application. The issue is an information disclosure risk via a network-accessible component, with no authentication required and ...

5.8CVSS6.1AI score0.00836EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/03/04 12:0 a.m.6 views

TSplus Remote Access 安全漏洞

TSplus Remote Access is a software from TSplus for remote desktop access and Windows application delivery. Used to enable remote desktop and web access, it enhances remote printing. A security vulnerability exists in TSplus Remote Access version 17.30, which stems from improper privileges and lea...

5.8CVSS6.5AI score0.00836EPSS
Exploits1References3
Cvelist
Cvelist
added 2025/03/04 12:0 a.m.31 views

CVE-2025-26318

hb.exe in TSplus Remote Access before 17.30 2024-10-30 allows remote attackers to retrieve a list of all domain accounts currently connected to the application...

5.8CVSS0.00836EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/03/04 12:0 a.m.10 views

CVE-2025-26318

hb.exe in TSplus Remote Access before 17.30 2024-10-30 allows remote attackers to retrieve a list of all domain accounts currently connected to the application...

5.8CVSS6.1AI score0.00836EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2024/10/22 12:13 p.m.397 views

Exploit for CVE-2025-26318

TSplus Remote Access - CVE-2025-26318 Insecure Permissions In...

5.8CVSS6.3AI score0.00836EPSS
Exploits1
ATTACKERKB
ATTACKERKB
added 2023/10/17 4:15 p.m.2 views

CVE-2023-27133

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

9.8CVSS7.2AI score0.02884EPSS
Exploits8References2
OSV
OSV
added 2023/10/17 4:15 p.m.2 views

CVE-2023-27133

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

9.8CVSS7.3AI score0.00797EPSS
Exploits1References1
NVD
NVD
added 2023/10/17 4:15 p.m.23 views

CVE-2023-27133

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

9.8CVSS9.5AI score0.00797EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2023/10/17 4:15 p.m.2 views

CVE-2023-27132

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product...

9.8CVSS7.3AI score0.01932EPSS
Exploits4References2
OSV
OSV
added 2023/10/17 4:15 p.m.3 views

CVE-2023-27132

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product...

9.8CVSS5.8AI score0.00912EPSS
Exploits1References1
NVD
NVD
added 2023/10/17 4:15 p.m.14 views

CVE-2023-27132

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product...

9.8CVSS9.7AI score0.00912EPSS
Exploits1References1
Prion
Prion
added 2023/10/17 4:15 p.m.23 views

Privilege escalation

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

7.5CVSS9.4AI score0.02884EPSS
Exploits8References1Affected Software1
CNNVD
CNNVD
added 2023/10/17 12:0 a.m.3 views

TSplus Security Vulnerabilities

TSplus is a remote access software software from TSplus. A security vulnerability exists in TSplus Remote Work version 16.0.0.0, which originates from setting insecure file and folder permissions that could allow a malicious user to manipulate the contents of a file or change a legitimate file in...

9.8CVSS6.9AI score0.00797EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2023/10/17 12:0 a.m.9 views

CVE-2023-27132

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product...

7.1AI score0.00912EPSS
Exploits1References1
CNNVD
CNNVD
added 2023/10/17 12:0 a.m.4 views

TSplus Security Vulnerabilities

TSplus is a remote access software software from TSplus. A security vulnerability exists in TSplus Remote Work version 16.0.0.0, which originates from a plaintext password placed on the var pass of the HTML source code of the secure single sign-on web portal...

9.8CVSS7.2AI score0.00912EPSS
Exploits1References2
Positive Technologies
Positive Technologies
added 2023/10/17 12:0 a.m.3 views

PT-2023-20971 · Tsplus · Tsplus Remote Work

Name of the Vulnerable Software and Affected Versions: TSplus Remote Work version 16.0.0.0 Description: The issue is related to weak permissions for certain file types, including .exe, .js, and .html files, located under the %PROGRAMFILESX86%TSplus-RemoteWorkClientswww folder. This weakness may...

9.8CVSS9.5AI score0.00797EPSS
Exploits1References6
Vulnrichment
Vulnrichment
added 2023/10/17 12:0 a.m.16 views

CVE-2023-27133

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

6.9AI score0.00797EPSS
Exploits1References1
CVE
CVE
added 2023/10/17 12:0 a.m.59 views

CVE-2023-27133

The CVE-2023-27133 entry affects TSplus Remote Work 16.0.0.0, reporting weak permissions for .exe, .js, and .html files under %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www. These permissions could allow privilege escalation if a different local user modifies a file. Red Hat and PTSecurity sou...

9.8CVSS9.3AI score0.00797EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/17 12:0 a.m.6 views

PT-2023-20970 · Tsplus · Tsplus Remote Work

Name of the Vulnerable Software and Affected Versions: TSplus Remote Work version 16.0.0.0 Description: The issue concerns the storage of a cleartext password in the HTML source code of the secure single sign-on web portal. Specifically, the password is placed on the var pass line. Recommendation...

9.8CVSS9.5AI score0.00912EPSS
Exploits1References7
Rows per page
Query Builder