Lucene search
+L

8 matches found

NVD
NVD
added 2023/10/17 4:15 p.m.43 views

CVE-2023-27133

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

9.8CVSS9.5AI score0.00797EPSS
Exploits1References1
Prion
Prion
added 2023/10/17 4:15 p.m.23 views

Privilege escalation

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

7.5CVSS9.4AI score0.02884EPSS
Exploits8References1Affected Software1
CVE
CVE
added 2023/10/17 12:0 a.m.63 views

CVE-2023-27133

The CVE-2023-27133 entry affects TSplus Remote Work 16.0.0.0, reporting weak permissions for .exe, .js, and .html files under %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www. These permissions could allow privilege escalation if a different local user modifies a file. Red Hat and PTSecurity sou...

9.8CVSS9.3AI score0.00797EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2023/09/11 12:0 a.m.50 views

CVE-2023-31068

TSplus Remote Access up to 16.0.2.14 has overly permissive ACLs: Full Control for Everyone on directories under %PROGRAMFILES(X86)%\TSplus\UserDesktop\themes. CVSSv3.1: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H (base 9.8). Root cause is insecure directory permissions; no remediation details are provide...

9.8CVSS9.4AI score0.02849EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2023/09/11 12:0 a.m.52 views

CVE-2023-31068

An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILESX86%\TSplus\UserDesktop\themes...

9.8AI score0.02849EPSS
Exploits3References2
Packet Storm
Packet Storm
added 2023/08/22 12:0 a.m.323 views

TSPlus 16.0.0.0 Insecure Permissions

Exploit Title: TSplus 16.0.0.0 - Remote Work Insecure Files and Folders Permissions Date: 2023-08-09 Exploit Author: Carlo Di Dato for Deloitte Risk Advisory Italia Vendor Homepage: https://tsplus.net/ Version: Up to 16.0.0.0 Tested on: Windows CVE : CVE-2023-31068 With TSPlus Remote Work v...

7.1AI score0.02849EPSS
Exploits3
0day.today
0day.today
added 2023/08/21 12:0 a.m.319 views

TSplus 16.0.0.0 - Remote Work Insecure Files and Folders Vulnerability

Exploit Title: TSplus 16.0.0.0 - Remote Work Insecure Files and Folders Permissions Exploit Author: Carlo Di Dato for Deloitte Risk Advisory Italia Vendor Homepage: https://tsplus.net/ Version: Up to 16.0.0.0 Tested on: Windows CVE : CVE-2023-31068 With TSPlus Remote Work v. 16.0.0.0 you can crea...

9.8CVSS7.1AI score0.02849EPSS
Exploits3
Exploit DB
Exploit DB
added 2023/08/21 12:0 a.m.292 views

TSplus 16.0.0.0 - Remote Work Insecure Files and Folders

Exploit Title: TSplus 16.0.0.0 - Remote Work Insecure Files and Folders Permissions Date: 2023-08-09 Exploit Author: Carlo Di Dato for Deloitte Risk Advisory Italia Vendor Homepage: https://tsplus.net/ Version: Up to 16.0.0.0 Tested on: Windows CVE : CVE-2023-31068 With TSPlus Remote Work v...

9.8CVSS9.8AI score0.02849EPSS
Exploits3
Rows per page
Query Builder