CVE-2026-4391
5.3 MEDIUMA security vulnerability has been detected in TeamSpeak 3 Server up to 3.13.7
Published: 2026-05-27 · Last updated: 2026-05-27
Severity and scoring
- CVSS
- 5.3 MEDIUM
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
- CWE
- CWE-119, CWE-122
Description
A security vulnerability has been detected in TeamSpeak 3 Server up to 3.13.7. This vulnerability affects unknown code of the component ECC Key Parser. Such manipulation leads to heap-based buffer overflow. The attack may be launched remotely. Upgrading to version 3.13.8 is able to resolve this issue. It is suggested to upgrade the affected component.
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2026-4391
- [Other]https://files.teamspeak-services.com/docs/security/TS-SA-2026-001.html
- [Other]https://modzero.com/en/advisories/mz-26-01-teamspeak/
- [Other]https://vuldb.com/vuln/366315
- [Other]https://vuldb.com/vuln/366315/cti
- [Other]https://www.teamspeak.com/en/downloads/#server
Related CVEs
Same CWE
- CVE-2026-52720 — A heap buffer overflow vulnerability was found in GStreamer's librfb (RFB/VNC client) (8.8 HIGH)
- CVE-2025-55661 — A heap buffer overflow in the Opus audio stream parser component of GPAC MP4Box v2.4 allows attackers to cause a Denial of Service (DoS) ... (5.5 MEDIUM)
- CVE-2025-55652 — A heap buffer overflow in the gf_isom_vp_config_new function (isomedia/avc_ext.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial ... (5.5 MEDIUM)
- CVE-2025-55648 — A heap buffer overflow in the gf_opus_parse_packet_header function (media_tools/av_parsers.c) of GPAC MP4Box v2.4 allows attackers to cau... (5.5 MEDIUM)
- CVE-2025-55645 — A heap buffer overflow in the gf_cenc_set_pssh function (isomedia/drm_sample.c) of GPAC MP4Box v2.4 allows attackers to cause a Denial of... (5.5 MEDIUM)