Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
TeamViewer Linux - Deletion command not properly executed after process crash
Vulnerability Description
TeamViewer Linux versions before 15.28 do not properly execute a deletion command for the connection password in case of a process crash. Knowledge of the crash event and the TeamViewer ID as well as either possession of the pre-crash connection password or local authenticated access to the machine would have allowed to establish a remote connection by reusing the not properly deleted connection password.
CVSS Information
CVSS:3.1/AV:L/AC:H/PR:H/UI:R/S:U/C:H/I:H/A:H
Vulnerability Type
N/A
Vulnerability Title
TeamViewer 安全漏洞
Vulnerability Description
Teamviewer是德国Teamviewer公司的一套用于远程控制、桌面共享和文件传输的软件。 TeamViewer 存在安全漏洞,该漏洞源于攻击者可以通过 Process Crash Undeleted Connection Password 绕过 TeamViewer for Linux 的限制,以获得用户权限。
CVSS Information
N/A
Vulnerability Type
N/A