Vulnerabilities > Teamwire

DATE CVE VULNERABILITY TITLE RISK
2024-03-05 CVE-2024-24275 Cross-site Scripting vulnerability in Teamwire
Cross Site Scripting vulnerability in Teamwire Windows desktop client v.2.0.1 through v.2.4.0 allows a remote attacker to obtain sensitive information via a crafted payload to the global search function.
network
low complexity
teamwire CWE-79
critical
 9.6
9.6
2024-03-05 CVE-2024-24276 Cross-site Scripting vulnerability in Teamwire
Cross Site Scripting (XSS) vulnerability in Teamwire Windows desktop client v.2.0.1 through v.2.4.0 allows a remote attacker to obtain sensitive information via a crafted payload to the chat name, message preview, username and group name components.
network
low complexity
teamwire CWE-79
critical
 9.6
9.6
2020-09-02 CVE-2020-12621 Missing Authentication for Critical Function vulnerability in Teamwire 5.3.0
The Teamwire application 5.3.0 for Android allows physically proximate attackers to exploit a flaw related to the pass-code component.
low complexity
teamwire CWE-306
6.1
6.1
2019-06-28 CVE-2018-17560 Cross-site Scripting vulnerability in Teamwire 1.5.1
The admin interface of the Grouptime Teamwire Client 1.5.1 prior to 1.9.0 on-premises messenger server allows stored XSS.
network
low complexity
teamwire CWE-79
6.1
6.1
2019-06-28 CVE-2018-17170 Code Injection vulnerability in Teamwire 1.5.1
Grouptime Teamwire Desktop Client 1.5.1 prior to 1.9.0 on Windows allows code injection via a template, leading to remote code execution.
network
high complexity
teamwire CWE-94
8.1
8.1