Vulnerability Description
TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10: --play URL. An attacker could force a victim to send an NTLM authentication request and either relay the request or capture the hash for offline password cracking. This affects teamviewer10, teamviewer8, teamviewerapi, tvchat1, tvcontrol1, tvfiletransfer1, tvjoinv8, tvpresent1, tvsendfile1, tvsqcustomer1, tvsqsupport1, tvvideocall1, and tvvpn1. The issue is fixed in 8.0.258861, 9.0.258860, 10.0.258873, 11.0.258870, 12.0.258869, 13.2.36220, 14.2.56676, 14.7.48350, and 15.8.3.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Teamviewer | Teamviewer | < 15.8.3 |
| Microsoft | Windows | - |
Related Weaknesses (CWE)
References
- https://community.teamviewer.com/t5/Announcements/Statement-on-CVE-2020-13699/tdVendor Advisory
- https://jeffs.sh/CVEs/CVE-2020-13699.txtThird Party Advisory
- https://community.teamviewer.com/t5/Announcements/Statement-on-CVE-2020-13699/tdVendor Advisory
- https://jeffs.sh/CVEs/CVE-2020-13699.txtThird Party Advisory
FAQ
What is CVE-2020-13699?
CVE-2020-13699 is a vulnerability with a CVSS score of 8.8 (HIGH). TeamViewer Desktop for Windows before 15.8.3 does not properly quote its custom URI handlers. A malicious website could launch TeamViewer with arbitrary parameters, as demonstrated by a teamviewer10: ...
How severe is CVE-2020-13699?
CVE-2020-13699 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2020-13699?
Check the references section above for vendor advisories and patch information. Affected products include: Teamviewer Teamviewer, Microsoft Windows.