An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILES(X86)%\TSplus\UserDesktop\themes.
| Źródło | Link | Uwagi |
|---|---|---|
| NVD (NIST) | https://nvd.nist.gov/vuln/detail/CVE-2023-31068 | Karta CVE w NVD |
| CISA KEV | https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2023-31068 | Wyszukiwanie CVE w KEV |
| FIRST EPSS | https://api.first.org/data/v1/epss?cve=CVE-2023-31068 | API EPSS dla CVE |
| cve@mitre.org | http://packetstormsecurity.com/files/174272/TSPlus-16.0.0.0-Insecure-Permissions.html | Third Party Advisory, VDB Entry |
| cve@mitre.org | https://www.exploit-db.com/exploits/51680 | Third Party Advisory, VDB Entry |