Truesec: >> Lapswebui Security Vulnerabilities
Insufficient Session Expiration in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password.
CVSS Score
6.0
EPSS Score
0.0
Published
2026-03-16
Non-working logout functionality in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password.
CVSS Score
6.0
EPSS Score
0.0
Published
2026-03-16
Browser caching of LAPS passwords in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin passwords.
CVSS Score
6.0
EPSS Score
0.0
Published
2026-03-16