TeamViewer 14.2.2558
Approved changes feed: RSS · Atom
cpe:2.3:a:teamviewer:teamviewer:14.2.2558:*:*:*:*:*:*:*
part: a version: 14.2.2558 update: *
| Vendor | Teamviewer (3448366e-130b-5aa2-b29b-1fdfff210449) |
|---|---|
| Product | Teamviewer (38a9b9ba-7476-56a1-9cd6-4675765de4f3) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from NVD CPE 2.0 feed |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2019-11769 |
vulnerable | 2026-06-03 14:39:33.827802 |
Details available
An issue was discovered in TeamViewer 14.2.2558. Updating the product as a non-administrative user requires entering administrative credentials into the GUI. Subsequently, these credentials are processed in Teamviewer.exe, which allows any application running in the same non-administrative user context to intercept them in cleartext within process memory. By using this technique, a local attacker is able to obtain administrative credentials in order to elevate privileges. This vulnerability can be exploited by injecting code into Teamviewer.exe which intercepts calls to GetWindowTextW and logs the processed credentials.
Published: 2019-09-11T19:44:17.000Z
Updated: 2024-08-04T23:03:32.709Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.