Vulnerability Details CVE-2021-34858
This vulnerability allows remote attackers to execute arbitrary code on affected installations of TeamViewer. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of TVS files. The issue results from the lack of proper validation of user-supplied data, which can result in a read past the end of an allocated structure. An attacker can leverage this vulnerability to execute code in the context of the current process. Was ZDI-CAN-13606.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.014
EPSS Ranking 79.6%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 6.8
References
- https://community.teamviewer.com/English/discussion/117794/august-updates-security-patches/p1
- https://www.zerodayinitiative.com/advisories/ZDI-21-1001/
- https://community.teamviewer.com/English/discussion/117794/august-updates-security-patches/p1
- https://www.zerodayinitiative.com/advisories/ZDI-21-1001/
Products affected by CVE-2021-34858
-
cpe:2.3:a:teamviewer:teamviewer:-
-
cpe:2.3:a:teamviewer:teamviewer:1.85
-
cpe:2.3:a:teamviewer:teamviewer:10.0.134865
-
cpe:2.3:a:teamviewer:teamviewer:10.0.223995
-
cpe:2.3:a:teamviewer:teamviewer:10.0.2551
-
cpe:2.3:a:teamviewer:teamviewer:10.0.259144
-
cpe:2.3:a:teamviewer:teamviewer:10.0.46203
-
cpe:2.3:a:teamviewer:teamviewer:10.0.52680
-
cpe:2.3:a:teamviewer:teamviewer:11.0.133222
-
cpe:2.3:a:teamviewer:teamviewer:11.0.137769
-
cpe:2.3:a:teamviewer:teamviewer:11.0.214397
-
cpe:2.3:a:teamviewer:teamviewer:11.0.224042
-
cpe:2.3:a:teamviewer:teamviewer:11.0.259143
-
cpe:2.3:a:teamviewer:teamviewer:11.0.90968
-
cpe:2.3:a:teamviewer:teamviewer:12.0.132598
-
cpe:2.3:a:teamviewer:teamviewer:12.0.137452
-
cpe:2.3:a:teamviewer:teamviewer:12.0.181268
-
cpe:2.3:a:teamviewer:teamviewer:12.0.214399
-
cpe:2.3:a:teamviewer:teamviewer:12.0.224043
-
cpe:2.3:a:teamviewer:teamviewer:12.0.259142
-
cpe:2.3:a:teamviewer:teamviewer:12.0.92876
-
cpe:2.3:a:teamviewer:teamviewer:13.0.3057.87385
-
cpe:2.3:a:teamviewer:teamviewer:13.0.3711.88039
-
cpe:2.3:a:teamviewer:teamviewer:13.0.5058
-
cpe:2.3:a:teamviewer:teamviewer:13.0.5640
-
cpe:2.3:a:teamviewer:teamviewer:13.0.6447
-
cpe:2.3:a:teamviewer:teamviewer:13.1.1548
-
cpe:2.3:a:teamviewer:teamviewer:13.2.14327
-
cpe:2.3:a:teamviewer:teamviewer:13.2.26558
-
cpe:2.3:a:teamviewer:teamviewer:13.2.26559
-
cpe:2.3:a:teamviewer:teamviewer:13.2.36215
-
cpe:2.3:a:teamviewer:teamviewer:13.2.36216
-
cpe:2.3:a:teamviewer:teamviewer:13.2.36217
-
cpe:2.3:a:teamviewer:teamviewer:13.2.36222
-
cpe:2.3:a:teamviewer:teamviewer:13.2.5287
-
cpe:2.3:a:teamviewer:teamviewer:13.2.9356
-
cpe:2.3:a:teamviewer:teamviewer:13.36216
-
cpe:2.3:a:teamviewer:teamviewer:14.0.12762
-
cpe:2.3:a:teamviewer:teamviewer:14.0.13880
-
cpe:2.3:a:teamviewer:teamviewer:14.0.8346
-
cpe:2.3:a:teamviewer:teamviewer:14.1.18533
-
cpe:2.3:a:teamviewer:teamviewer:14.1.3399
-
cpe:2.3:a:teamviewer:teamviewer:14.1.9025
-
cpe:2.3:a:teamviewer:teamviewer:14.2.2558
-
cpe:2.3:a:teamviewer:teamviewer:14.2.56678
-
cpe:2.3:a:teamviewer:teamviewer:14.2.8352
-
cpe:2.3:a:teamviewer:teamviewer:14.3.4730
-
cpe:2.3:a:teamviewer:teamviewer:14.4.2669
-
cpe:2.3:a:teamviewer:teamviewer:14.5.1691
-
cpe:2.3:a:teamviewer:teamviewer:14.5.5819
-
cpe:2.3:a:teamviewer:teamviewer:14.6.2452
-
cpe:2.3:a:teamviewer:teamviewer:14.6.4835
-
cpe:2.3:a:teamviewer:teamviewer:14.7.13736
-
cpe:2.3:a:teamviewer:teamviewer:14.7.1965
-
cpe:2.3:a:teamviewer:teamviewer:14.7.48644
-
cpe:2.3:a:teamviewer:teamviewer:15.0.8397
-
cpe:2.3:a:teamviewer:teamviewer:15.16.8.0
-
cpe:2.3:a:teamviewer:teamviewer:15.8.3
-
cpe:2.3:a:teamviewer:teamviewer:2.44
-
cpe:2.3:a:teamviewer:teamviewer:3.6.5523
-
cpe:2.3:a:teamviewer:teamviewer:4.1.8107
-
cpe:2.3:a:teamviewer:teamviewer:5.0.8703
-
cpe:2.3:a:teamviewer:teamviewer:5.0.8703_qs
-
cpe:2.3:a:teamviewer:teamviewer:8.0.226330
-
cpe:2.3:a:teamviewer:teamviewer:9.0.224135
-
cpe:2.3:a:teamviewer:teamviewer:9.0.259145