What is the severity of CVE-2019-11769?

The severity of CVE-2019-11769 is high with a CVSS score of 7.8.

What is the affected software version of CVE-2019-11769?

The affected software version of CVE-2019-11769 is TeamViewer 14.2.2558.

How can I update TeamViewer as a non-administrative user for CVE-2019-11769?

Updating TeamViewer as a non-administrative user for CVE-2019-11769 requires entering administrative credentials into the GUI.

What are the recommendations for CVE-2019-11769?

To mitigate CVE-2019-11769, update TeamViewer to the latest version and ensure that administrative credentials are not processed in Teamviewer.exe.

Where can I find more information about CVE-2019-11769?

You can find more information about CVE-2019-11769 in the following references: [Reference 1](https://blog.to.com/advisory-teamviewer-cve-2019-11769-2/) and [Reference 2](https://community.teamviewer.com/t5/Knowledge-Base/tkb-p/Knowledgebase?type=label&labels=Security).

Vulnerability/
CVE-2019-11769

high

7.8

CWE

522

11/9/2019

4/8/2024

CVE-2019-11769

First published: Wed Sep 11 2019(Updated: )

An issue was discovered in TeamViewer 14.2.2558. Updating the product as a non-administrative user requires entering administrative credentials into the GUI. Subsequently, these credentials are processed in Teamviewer.exe, which allows any application running in the same non-administrative user context to intercept them in cleartext within process memory. By using this technique, a local attacker is able to obtain administrative credentials in order to elevate privileges. This vulnerability can be exploited by injecting code into Teamviewer.exe which intercepts calls to GetWindowTextW and logs the processed credentials.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Teamviewer Teamviewer	=14.2.2558

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2019-11769?
The severity of CVE-2019-11769 is high with a CVSS score of 7.8.
What is the affected software version of CVE-2019-11769?
The affected software version of CVE-2019-11769 is TeamViewer 14.2.2558.
How can I update TeamViewer as a non-administrative user for CVE-2019-11769?
Updating TeamViewer as a non-administrative user for CVE-2019-11769 requires entering administrative credentials into the GUI.
What are the recommendations for CVE-2019-11769?
To mitigate CVE-2019-11769, update TeamViewer to the latest version and ensure that administrative credentials are not processed in Teamviewer.exe.
Where can I find more information about CVE-2019-11769?
You can find more information about CVE-2019-11769 in the following references: [Reference 1](https://blog.to.com/advisory-teamviewer-cve-2019-11769-2/) and [Reference 2](https://community.teamviewer.com/t5/Knowledge-Base/tkb-p/Knowledgebase?type=label&labels=Security).

collector/nvd-index
agent/severity
agent/author
agent/weakness
agent/references
agent/description
agent/type
agent/event
agent/softwarecombine
agent/first-publish-date
agent/tags
agent/last-modified-date
collector/mitre-cve
source/MITRE
vendor/teamviewer
canonical/teamviewer teamviewer
version/teamviewer teamviewer/14.2.2558

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.