CVE-2023-31068

Опубликовано: 11 сент. 2023

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILES(X86)%\TSplus\UserDesktop\themes.

Ссылки

http://packetstormsecurity.com/files/174272/TSPlus-16.0.0.0-Insecure-Permissions.html
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/51680
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/174272/TSPlus-16.0.0.0-Insecure-Permissions.html
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/51680
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:tsplus:tsplus_remote_access:*:*:*:*:*:*:*:*

Версия до 16.0.0.0 (включая)

EPSS

Процентиль: 81%

0.01501

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-276

Связанные уязвимости

GHSA-gx37-4cw7-q8m8