CVE-2025-15553 PUBLISHED

Insecure Logout Functionality in Truesec LAPSWebUI

Assigner: NCSC-FI
Reserved: 02.02.2026 Published: 16.03.2026 Updated: 16.03.2026

Non-working logout functionality in Truesec’s LAPSWebUI before version 2.4 allows an attacker with access to a workstation to escalate their privileges via disclosure of local admin password.

Metrics

CVSS 4.0

CVSS Vector: CVSS:4.0/AV:L/AC:L/AT:P/PR:L/UI:P/VC:H/VI:N/VA:N/SC:H/SI:H/SA:H
CVSS Score: 6

Exploitability Metrics		Vulnerable System Impact Metrics		Subsequent System Impact Metrics
Attack Vector	Local	Confidentiality	High	Confidentiality	High
Attack Complexity	Low	Integrity	None	Integrity	High
Attack Requirements	Present	Availability	None	Availability	High
Privileges Required	Low
User Interaction	Passive

CVSS 4.0

Product Status

Vendor	Truesec
Product	LAPSWebUI
Versions	Default: unaffected affected from 0 to 2.4 (excl.) Version 2.4 is unaffected

Workarounds

Configure LAPSWebUI to require Entra ID sign-in every time a user wants to display a password, by enabling the setting Force Reauth on Password request.

Credits

Laban Sköllermark at Reversec Sweden AB finder

References

https://labs.reversec.com/advisories/2026/03/insecure-logout-functionality-in-truesec-lapswebui

Problem Types

CWE-613 Insufficient session expiration CWE

Impacts

Escalation of Privileges
Information Disclosure