Skip to main content

Tsplus Remote Work

4 CVEs product

Monthly

CVE-2023-27133 CRITICAL POC Act Now

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Tsplus Remote Work
NVD
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-27132 CRITICAL POC Act Now

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Tsplus Remote Work
NVD
CVSS 3.1
9.8
EPSS
0.9%
CVE-2023-31069 CRITICAL POC Act Now

An issue was discovered in TSplus Remote Access through 16.0.2.14. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Tsplus Remote Work
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
1.9%
CVE-2023-31068 CRITICAL POC Act Now

An issue was discovered in TSplus Remote Access through 16.0.2.14. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Tsplus Remote Work
NVD Exploit-DB
CVSS 3.1
9.8
EPSS
2.8%
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Tsplus Remote Work
NVD
EPSS 1% CVSS 9.8
CRITICAL POC Act Now

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Tsplus Remote Work
NVD
EPSS 2% CVSS 9.8
CRITICAL POC Act Now

An issue was discovered in TSplus Remote Access through 16.0.2.14. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Information Disclosure Tsplus Remote Work
NVD Exploit-DB
EPSS 3% CVSS 9.8
CRITICAL POC Act Now

An issue was discovered in TSplus Remote Access through 16.0.2.14. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

Privilege Escalation Tsplus Remote Work
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy