本頁列出影響 truesec lapswebui 的已公開 CVE 漏洞(透過 NVD CPE 關聯)。每列包含嚴重程度評分、摘要與發布日期,便於識別與分析安全議題。
| CVE | 摘要 | 來源 | 最高 CVSS | EPSS % | 公開時間 | 更新時間 |
|---|---|---|---|---|---|---|
| CVE-2025-15554 | Browser caching of LAPS passwords in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin passwords. | db4dfee8-a97e-4877-bfae-eba6d14a2166 | 6.0 | 0.14% | 2026-03-16 | 2026-06-17 |
| CVE-2025-15553 | Non-working logout functionality in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password. | db4dfee8-a97e-4877-bfae-eba6d14a2166 | 6.0 | 0.11% | 2026-03-16 | 2026-06-17 |
| CVE-2025-15552 | Insufficient Session Expiration in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password. | db4dfee8-a97e-4877-bfae-eba6d14a2166 | 6.0 | 0.11% | 2026-03-16 | 2026-06-17 |