CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-15552

Insufficient Session Expiration in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 3.9%

CVSS Severity

CVSS v3 Score 7.8

References

https://labs.reversec.com/advisories/2026/03/long-session-lifetime-in-truesec-lapswebui

Products affected by CVE-2025-15552

Truesec » Lapswebui » Version: Any

cpe:2.3:a:truesec:lapswebui:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-15552

Products

Pricing

Contact Us