{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-4392", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "state": "PUBLISHED", "assignerShortName": "VulDB", "dateReserved": "2026-03-18T15:06:05.814Z", "datePublished": "2026-05-27T17:00:09.695Z", "dateUpdated": "2026-05-28T15:04:08.513Z"}, "containers": {"cna": {"providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-05-27T17:00:09.695Z"}, "title": "TeamSpeak 3 Server clientek Handshake assertion", "problemTypes": [{"descriptions": [{"type": "CWE", "cweId": "CWE-617", "lang": "en", "description": "Reachable Assertion"}]}], "affected": [{"vendor": "n/a", "product": "TeamSpeak 3 Server", "versions": [{"version": "3.13.0", "status": "affected"}, {"version": "3.13.1", "status": "affected"}, {"version": "3.13.2", "status": "affected"}, {"version": "3.13.3", "status": "affected"}, {"version": "3.13.4", "status": "affected"}, {"version": "3.13.5", "status": "affected"}, {"version": "3.13.6", "status": "affected"}, {"version": "3.13.7", "status": "affected"}, {"version": "3.13.8", "status": "unaffected"}], "cpes": ["cpe:2.3:a:teamspeak_3_server:teamspeak_3_server:*:*:*:*:*:*:*:*"], "modules": ["clientek Handshake Handler"]}], "descriptions": [{"lang": "en", "value": "A vulnerability was detected in TeamSpeak 3 Server up to 3.13.7. This issue affects some unknown processing of the component clientek Handshake Handler. Performing a manipulation of the argument proof results in reachable assertion. Remote exploitation of the attack is possible. Upgrading to version 3.13.8 is capable of addressing this issue. Upgrading the affected component is recommended."}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 6.9, "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X", "baseSeverity": "MEDIUM"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C", "baseSeverity": "MEDIUM"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 5.3, "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C", "baseSeverity": "MEDIUM"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 5, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P/E:ND/RL:OF/RC:C"}}], "timeline": [{"time": "2026-05-27T00:00:00.000Z", "lang": "en", "value": "Advisory disclosed"}, {"time": "2026-05-27T02:00:00.000Z", "lang": "en", "value": "VulDB entry created"}, {"time": "2026-05-27T18:27:22.000Z", "lang": "en", "value": "VulDB entry last update"}], "credits": [{"lang": "en", "value": "Michael Imfeld (modzero)", "type": "finder"}], "references": [{"url": "https://vuldb.com/vuln/366316", "name": "VDB-366316 | TeamSpeak 3 Server clientek Handshake assertion", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/366316/cti", "name": "VDB-366316 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://modzero.com/en/advisories/mz-26-01-teamspeak/", "tags": ["related"]}, {"url": "https://files.teamspeak-services.com/docs/security/TS-SA-2026-001.html", "tags": ["related"]}, {"url": "https://www.teamspeak.com/en/downloads/#server", "tags": ["patch"]}]}, "adp": [{"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2026-05-28T15:03:40.600418Z", "id": "CVE-2026-4392", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-28T15:04:08.513Z"}}]}}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2026-4392", "role": "CISA Coordinator", "options": [{"Exploitation": "none"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2026-05-28T15:03:40.600418Z"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2026-05-28T15:04:00.456Z"}}], "cna": {"title": "TeamSpeak 3 Server clientek Handshake assertion", "credits": [{"lang": "en", "type": "finder", "value": "Michael Imfeld (modzero)"}], "metrics": [{"cvssV4_0": {"version": "4.0", "baseScore": 6.9, "baseSeverity": "MEDIUM", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X"}}, {"cvssV3_1": {"version": "3.1", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C"}}, {"cvssV3_0": {"version": "3.0", "baseScore": 5.3, "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C"}}, {"cvssV2_0": {"version": "2.0", "baseScore": 5, "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P/E:ND/RL:OF/RC:C"}}], "affected": [{"cpes": ["cpe:2.3:a:teamspeak_3_server:teamspeak_3_server:*:*:*:*:*:*:*:*"], "vendor": "n/a", "modules": ["clientek Handshake Handler"], "product": "TeamSpeak 3 Server", "versions": [{"status": "affected", "version": "3.13.0"}, {"status": "affected", "version": "3.13.1"}, {"status": "affected", "version": "3.13.2"}, {"status": "affected", "version": "3.13.3"}, {"status": "affected", "version": "3.13.4"}, {"status": "affected", "version": "3.13.5"}, {"status": "affected", "version": "3.13.6"}, {"status": "affected", "version": "3.13.7"}, {"status": "unaffected", "version": "3.13.8"}]}], "timeline": [{"lang": "en", "time": "2026-05-27T00:00:00.000Z", "value": "Advisory disclosed"}, {"lang": "en", "time": "2026-05-27T02:00:00.000Z", "value": "VulDB entry created"}, {"lang": "en", "time": "2026-05-27T18:27:22.000Z", "value": "VulDB entry last update"}], "references": [{"url": "https://vuldb.com/vuln/366316", "name": "VDB-366316 | TeamSpeak 3 Server clientek Handshake assertion", "tags": ["vdb-entry", "technical-description"]}, {"url": "https://vuldb.com/vuln/366316/cti", "name": "VDB-366316 | CTI Indicators (IOB, IOC, IOA)", "tags": ["signature", "permissions-required"]}, {"url": "https://modzero.com/en/advisories/mz-26-01-teamspeak/", "tags": ["related"]}, {"url": "https://files.teamspeak-services.com/docs/security/TS-SA-2026-001.html", "tags": ["related"]}, {"url": "https://www.teamspeak.com/en/downloads/#server", "tags": ["patch"]}], "descriptions": [{"lang": "en", "value": "A vulnerability was detected in TeamSpeak 3 Server up to 3.13.7. This issue affects some unknown processing of the component clientek Handshake Handler. Performing a manipulation of the argument proof results in reachable assertion. Remote exploitation of the attack is possible. Upgrading to version 3.13.8 is capable of addressing this issue. Upgrading the affected component is recommended."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-617", "description": "Reachable Assertion"}]}], "providerMetadata": {"orgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "shortName": "VulDB", "dateUpdated": "2026-05-27T17:00:09.695Z"}}}, "cveMetadata": {"cveId": "CVE-2026-4392", "state": "PUBLISHED", "dateUpdated": "2026-05-28T15:04:08.513Z", "dateReserved": "2026-03-18T15:06:05.814Z", "assignerOrgId": "1af790b2-7ee1-4545-860a-a788eba489b5", "datePublished": "2026-05-27T17:00:09.695Z", "assignerShortName": "VulDB"}, "dataVersion": "5.2"}

{"cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability was detected in TeamSpeak 3 Server up to 3.13.7. This issue affects some unknown processing of the component clientek Handshake Handler. Performing a manipulation of the argument proof results in reachable assertion. Remote exploitation of the attack is possible. Upgrading to version 3.13.8 is capable of addressing this issue. Upgrading the affected component is recommended."}], "id": "CVE-2026-4392", "lastModified": "2026-05-27T19:49:48.143", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.0, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "[email protected]", "type": "Secondary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "LOW", "baseScore": 5.3, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 1.4, "source": "[email protected]", "type": "Primary"}], "cvssMetricV40": [{"cvssData": {"Automatable": "NOT_DEFINED", "Recovery": "NOT_DEFINED", "Safety": "NOT_DEFINED", "attackComplexity": "LOW", "attackRequirements": "NONE", "attackVector": "NETWORK", "availabilityRequirement": "NOT_DEFINED", "baseScore": 6.9, "baseSeverity": "MEDIUM", "confidentialityRequirement": "NOT_DEFINED", "exploitMaturity": "NOT_DEFINED", "integrityRequirement": "NOT_DEFINED", "modifiedAttackComplexity": "NOT_DEFINED", "modifiedAttackRequirements": "NOT_DEFINED", "modifiedAttackVector": "NOT_DEFINED", "modifiedPrivilegesRequired": "NOT_DEFINED", "modifiedSubAvailabilityImpact": "NOT_DEFINED", "modifiedSubConfidentialityImpact": "NOT_DEFINED", "modifiedSubIntegrityImpact": "NOT_DEFINED", "modifiedUserInteraction": "NOT_DEFINED", "modifiedVulnAvailabilityImpact": "NOT_DEFINED", "modifiedVulnConfidentialityImpact": "NOT_DEFINED", "modifiedVulnIntegrityImpact": "NOT_DEFINED", "privilegesRequired": "NONE", "providerUrgency": "NOT_DEFINED", "subAvailabilityImpact": "NONE", "subConfidentialityImpact": "NONE", "subIntegrityImpact": "NONE", "userInteraction": "NONE", "valueDensity": "NOT_DEFINED", "vectorString": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X", "version": "4.0", "vulnAvailabilityImpact": "LOW", "vulnConfidentialityImpact": "NONE", "vulnIntegrityImpact": "NONE", "vulnerabilityResponseEffort": "NOT_DEFINED"}, "source": "[email protected]", "type": "Secondary"}]}, "published": "2026-05-27T18:16:28.763", "references": [{"source": "[email protected]", "url": "https://files.teamspeak-services.com/docs/security/TS-SA-2026-001.html"}, {"source": "[email protected]", "url": "https://modzero.com/en/advisories/mz-26-01-teamspeak/"}, {"source": "[email protected]", "url": "https://vuldb.com/vuln/366316"}, {"source": "[email protected]", "url": "https://vuldb.com/vuln/366316/cti"}, {"source": "[email protected]", "url": "https://www.teamspeak.com/en/downloads/#server"}], "sourceIdentifier": "[email protected]", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-617"}], "source": "[email protected]", "type": "Primary"}]}

{}

{"affected": [{"configurations": [{"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.0"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.1"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.2"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.3"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.4"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.5"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.6"}}, {"platform": null, "status": "affected", "versions": {"scheme": "semver", "value": "3.13.7"}}, {"platform": null, "status": "unaffected", "versions": {"scheme": "semver", "value": "3.13.8"}}], "enrichment": {"confidence": 95.0, "confidence_source": "inferred", "scores": [{"score": 95.0, "source": "inferred"}, {"score": 100.0, "source": "matching"}]}, "original": {"product": "TeamSpeak 3 Server", "source": "cna", "vendor": "n/a"}, "product": "teamspeak_3_server", "vendor": "teamspeak_3_server"}], "created": "2026-05-27T19:30:35.579367+00:00", "updated": "2026-05-28T04:15:06.715665+00:00", "vendors": ["teamspeak_3_server", "teamspeak_3_server$PRODUCT$teamspeak_3_server"]}