CVE-2026-2695
Lack of Server-side validation in Instruction Input in TeamViewer DEX Platform (On-Premises)
A command
injection vulnerability was discovered in TeamViewer DEX Platform On-Premises
(former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows
authenticated users with at least questioner privileges to inject commands in specific
instructions. Exploitation could lead to execution of elevated commands on
devices connected to the platform.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Productos afectados
TeamViewer · DEX (On-Premises)¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →