CVE-2026-2695
Lack of Server-side validation in Instruction Input in TeamViewer DEX Platform (On-Premises)
A command
injection vulnerability was discovered in TeamViewer DEX Platform On-Premises
(former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows
authenticated users with at least questioner privileges to inject commands in specific
instructions. Exploitation could lead to execution of elevated commands on
devices connected to the platform.
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L
Produtos afetados
TeamViewer · DEX (On-Premises)Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →