7.8
CVE-2021-34803
- EPSS 0.47%
- Veröffentlicht 16.06.2021 15:15:08
- Zuletzt bearbeitet 21.11.2024 06:11:14
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginTeamViewer before 14.7.48644 on Windows loads untrusted DLLs in certain situations.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Teamviewer ≫ Teamviewer Version < 9.0.259145
Teamviewer ≫ Teamviewer Version >= 10.0.2551 < 10.0.259144
Teamviewer ≫ Teamviewer Version >= 11.0.90968 < 11.0.259143
Teamviewer ≫ Teamviewer Version >= 12.0.92876 < 12.0.259142
Teamviewer ≫ Teamviewer Version >= 13.0.5058 < 13.2.36222
Teamviewer ≫ Teamviewer Version >= 14.0.8346 < 14.2.56678
Teamviewer ≫ Teamviewer Version >= 14.3.4730 < 14.7.48644
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.47% | 0.369 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.8 | 1.8 | 5.9 |
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
| nvd@nist.gov | 4.4 | 3.4 | 6.4 |
AV:L/AC:M/Au:N/C:P/I:P/A:P
|
CWE-427 Uncontrolled Search Path Element
The product uses a fixed or controlled search path to find resources, but one or more locations in that path can be under the control of unintended actors.
https://community.teamviewer.com/English/discussion/111147/windows-v9-0-259145
https://community.teamviewer.com/English/discussion/111149/windows-v10-0-259144
https://community.teamviewer.com/English/discussion/111150/windows-v11-0-259143
https://community.teamviewer.com/English/discussion/111151/windows-v12-0-259142
https://community.teamviewer.com/English/discussion/111152/windows-v13-2-36222
https://community.teamviewer.com/English/discussion/111153/windows-v14-2-56678
https://community.teamviewer.com/English/discussion/111154/windows-v14-7-48644