tv-2022-1002

Updates for OpenSSL vulnerabilities

Bulletin ID
TV-2022-1002
Date Published
Mar 22, 2022
Last Update
Jan 10, 2024
Priority
Moderate
Assigned CVE
CVE-2022-0778
Affected Products
TeamViewer Windows Host IoT
TeamViewer IoT Agent for Linux
TeamViewer for Linux
TeamViewer Android Apps

The third-party OpenSSL library, which is widely used in the software industry, is subject to a high-severity denial-of-service (DoS) vulnerability, tracked as CVE-2022-0778, that could lead to resource exhaustion in certificate parsing. Most TeamViewer solutions are not affected. The following TeamViewer products should be patched as soon as possible:

  • TeamViewer Windows Host IoT, please update to version 15.28 
  • TeamViewer IoT Agent for Linux, please update to 2.21 
  • TeamViewer for Linux, please update to version 15.28 
  • TeamViewer Android apps, please update to version 15.28

Do you want to report a security issue?

TeamViewer’s security team will investigate every submission in our Vulnerability Disclosure Program.