{"api_version":"1","generated_at":"2026-06-04T13:00:03+00:00","cve":"CVE-2026-2695","urls":{"html":"https://cve.report/CVE-2026-2695","api":"https://cve.report/api/cve/CVE-2026-2695.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2026-2695","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2026-2695"},"summary":{"title":"Lack of Server-side validation in Instruction Input in TeamViewer DEX Platform (On-Premises)","description":"A command\ninjection vulnerability was discovered in TeamViewer DEX Platform On-Premises\n(former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows\nauthenticated users with at least questioner privileges to inject commands in specific\ninstructions. Exploitation could lead to execution of elevated commands on\ndevices connected to the platform.","state":"PUBLISHED","assigner":"TV","published_at":"2026-05-13 17:16:19","updated_at":"2026-05-13 18:10:51"},"problem_types":["CWE-20","CWE-20 CWE-20 Improper input validation"],"metrics":[{"version":"3.1","source":"psirt@teamviewer.com","type":"Secondary","score":"6.3","severity":"MEDIUM","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","data":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"}},{"version":"3.1","source":"CNA","type":"CVSS","score":"6.3","severity":"MEDIUM","vector":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","data":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"LOW","baseScore":6.3,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","integrityImpact":"LOW","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","version":"3.1"}}],"references":[{"url":"https://www.teamviewer.com/de/resources/trust-center/security-bulletins/tv-2026-1004/","name":"https://www.teamviewer.com/de/resources/trust-center/security-bulletins/tv-2026-1004/","refsource":"psirt@teamviewer.com","tags":[],"title":"","mime":"","httpstatus":"","archivestatus":"0"},{"url":"https://www.cve.org/CVERecord?id=CVE-2026-2695","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2026-2695","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"TeamViewer","product":"DEX (On-Premises)","version":"affected 9.2 custom","platforms":[]}],"timeline":[],"solutions":[{"source":"CNA","title":"","value":"Update to the latest version (v9.2 or the latest available version).","time":"","lang":"en"}],"workarounds":[],"exploits":[],"credits":[{"source":"CNA","value":"Lockheed Martin Red Team","lang":"en"}],"nvd_cpes":[],"vendor_comments":[],"enrichments":{"kev":null,"epss":{"cve_year":"2026","cve_id":"2695","cve":"CVE-2026-2695","epss":"0.000920000","percentile":"0.256050000","score_date":"2026-05-21","updated_at":"2026-05-22 00:07:43"},"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"metrics":[{"other":{"content":{"id":"CVE-2026-2695","options":[{"Exploitation":"none"},{"Automatable":"no"},{"Technical Impact":"total"}],"role":"CISA Coordinator","timestamp":"2026-05-13T17:19:55.259243Z","version":"2.0.3"},"type":"ssvc"}}],"providerMetadata":{"dateUpdated":"2026-05-13T17:45:24.249Z","orgId":"134c704f-9b21-4f2e-91b3-4a467353bcc0","shortName":"CISA-ADP"},"title":"CISA ADP Vulnrichment"}],"cna":{"affected":[{"defaultStatus":"unaffected","modules":["Platform"],"product":"DEX (On-Premises)","vendor":"TeamViewer","versions":[{"lessThan":"9.2","status":"affected","version":"0","versionType":"custom"}]}],"credits":[{"lang":"en","type":"finder","value":"Lockheed Martin Red Team"}],"descriptions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"<p>A command\ninjection vulnerability was discovered&nbsp;in TeamViewer DEX Platform On-Premises\n(former 1E DEX Platform On-Premises) prior to version 9.2.&nbsp;Improper input validation allows\nauthenticated users with at least questioner privileges to inject commands in specific\ninstructions. Exploitation could lead to execution of elevated commands on\ndevices connected to the platform.&nbsp;</p>"}],"value":"A command\ninjection vulnerability was discovered in TeamViewer DEX Platform On-Premises\n(former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows\nauthenticated users with at least questioner privileges to inject commands in specific\ninstructions. Exploitation could lead to execution of elevated commands on\ndevices connected to the platform."}],"metrics":[{"cvssV3_1":{"attackComplexity":"LOW","attackVector":"NETWORK","availabilityImpact":"LOW","baseScore":6.3,"baseSeverity":"MEDIUM","confidentialityImpact":"LOW","integrityImpact":"LOW","privilegesRequired":"LOW","scope":"UNCHANGED","userInteraction":"NONE","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","version":"3.1"},"format":"CVSS","scenarios":[{"lang":"en","value":"GENERAL"}]}],"problemTypes":[{"descriptions":[{"cweId":"CWE-20","description":"CWE-20 Improper input validation","lang":"en","type":"CWE"}]}],"providerMetadata":{"dateUpdated":"2026-05-13T16:09:08.776Z","orgId":"13430f76-86eb-43b2-a71c-82c956ef31b6","shortName":"TV"},"references":[{"url":"https://www.teamviewer.com/de/resources/trust-center/security-bulletins/tv-2026-1004/"}],"solutions":[{"lang":"en","supportingMedia":[{"base64":false,"type":"text/html","value":"Update to the latest version (v9.2 or the latest available version)."}],"value":"Update to the latest version (v9.2 or the latest available version)."}],"source":{"discovery":"UNKNOWN"},"title":"Lack of Server-side validation in Instruction Input in TeamViewer DEX Platform (On-Premises)","x_generator":{"engine":"Vulnogram 1.0.2"}}},"cveMetadata":{"assignerOrgId":"13430f76-86eb-43b2-a71c-82c956ef31b6","assignerShortName":"TV","cveId":"CVE-2026-2695","datePublished":"2026-05-13T16:09:08.776Z","dateReserved":"2026-02-18T14:30:36.890Z","dateUpdated":"2026-05-13T17:45:24.249Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.2"},"nvd":{"publishedDate":"2026-05-13 17:16:19","lastModifiedDate":"2026-05-13 18:10:51","problem_types":["CWE-20","CWE-20 CWE-20 Improper input validation"],"metrics":{"cvssMetricV31":[{"source":"psirt@teamviewer.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L","baseScore":6.3,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"LOW","integrityImpact":"LOW","availabilityImpact":"LOW"},"exploitabilityScore":2.8,"impactScore":3.4}]},"configurations":[]},"legacy_mitre":{"record":{"CveYear":"2026","CveId":"2695","Ordinal":"1","Title":"Lack of Server-side validation in Instruction Input in TeamViewe","CVE":"CVE-2026-2695","Year":"2026"},"notes":[{"CveYear":"2026","CveId":"2695","Ordinal":"1","NoteData":"A command\ninjection vulnerability was discovered in TeamViewer DEX Platform On-Premises\n(former 1E DEX Platform On-Premises) prior to version 9.2. Improper input validation allows\nauthenticated users with at least questioner privileges to inject commands in specific\ninstructions. Exploitation could lead to execution of elevated commands on\ndevices connected to the platform.","Type":"Description","Title":"Lack of Server-side validation in Instruction Input in TeamViewe"}]}}}