Tsplus Remote Work

tsplus_remote_work

Vendor: Tsplus • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-27133 1Tsplus 1Tsplus Remote Work Nov 21, 2024 Oct 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies...Show more TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILES(X86)%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remote Access product, not the TSplus Remote Work product.Show less
CVE-2023-27132 1Tsplus 1Tsplus Remote Work Nov 21, 2024 Oct 17, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not th...Show more TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product.Show less
CVE-2023-31069 1Tsplus 2Tsplus Remote Access Tsplus Remote Work Mar 3, 2026 Sep 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in TSplus Remote Access through 16.0.2.14. Credentials are stored as cleartext within the HTML source code of the login page.
CVE-2023-31068 1Tsplus 2Tsplus Remote Access Tsplus Remote Work Mar 3, 2026 Sep 11, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILES(X86)%\TSplus\UserDesktop\themes.