TeamViewer Desktop Bypass Remote Login Vulnerability — CVE-2019-18988

Summary

Advisory CVE-2019-18988. TeamViewer Desktop Bypass Remote Login Vulnerability Vendor: TeamViewer. Source: CISA-KEV. Threat: high. Known exploited in the wild. See the official advisory for details.

What to do

General, cautious steps (verify details in the official source):

• Prioritize patching or mitigation immediately (treat as actively risky).
• Identify affected product versions in your inventory and verify whether you are impacted.
• Apply vendor patches/updates or recommended mitigations as soon as available.
• Check logs/telemetry for indicators of compromise and suspicious activity.
• Consider temporary hardening: restrict access, reduce attack surface, and monitor aggressively.
• Read the official advisory for exact affected versions and remediation steps.

Official advisory

Read the official source

Related advisories

• Adobe Acrobat and Reader Heap-based Buffer Overflow Vulnerability CVE-2021-21017
• Adobe Acrobat and Reader Use-After-Free Vulnerability CVE-2021-28550
• Adobe ColdFusion Deserialization of Untrusted Data Vulnerability CVE-2018-4939
• Adobe ColdFusion Unrestricted File Upload Vulnerability CVE-2018-15961
• Amcrest Cameras and NVR Stack-based Buffer Overflow Vulnerability CVE-2020-5735
• Android Kernel Out-of-Bounds Write Vulnerability CVE-2020-0041
• Android Kernel Use-After-Free Vulnerability CVE-2019-2215
• Apache HTTP Server Privilege Escalation Vulnerability CVE-2019-0211
• Apache Shiro Code Execution Vulnerability CVE-2016-4437
• Apache Solr VelocityResponseWriter Plug-In Remote Code Execution Vulnerability CVE-2019-17558
• Apache Struts Deserialization of Untrusted Data Vulnerability CVE-2017-9805
• Apache Struts Remote Code Execution Vulnerability CVE-2020-17530