mirror of
https://github.com/0xMarcio/cve.git
synced 2026-06-03 08:48:00 +02:00
0xMarcio
983 B
983 B
CVE-2022-23242
Description
TeamViewer Linux versions before 15.28 do not properly execute a deletion command for the connection password in case of a process crash. Knowledge of the crash event and the TeamViewer ID as well as either possession of the pre-crash connection password or local authenticated access to the machine would have allowed to establish a remote connection by reusing the not properly deleted connection password.
POC
Reference
No PoCs from references.