216.73.216.67

CVE-2025-15552

· Published 16/03/2026 14:17 · Modified 16/03/2026 14:53

Labels: CVE-2025-15552 2026-03-16CVE-2025-15552CWE-613db4dfee8-a97e-4877-bfae-eba6d14a2166

Essential information

Published
16/03/2026 14:17
Modified
16/03/2026 14:53
Author
Creator
CVSS
6.0 MEDIUM (v3) 6.0 MEDIUM (v4.0)
CISA KEV
No
CWE
CVSS vector

CVSS metrics

Description

Insufficient Session Expiration in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password.

NVD status

Status
Awaiting Analysis — CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.
Source
db4dfee8-a97e-4877-bfae-eba6d14a2166
NVD
View on NVD

Affected products (CPE)

ProductCPE
truesec / lapswebui cpe:2.3:a:truesec:lapswebui:<2.4:*:*:*:*:*:*:*

References