CVE-2026-4391
TeamSpeak 3 Server ECC Key heap-based overflow
CVSS Score
5.3
EPSS Score
0.0%
EPSS Percentile
0th
A security vulnerability has been detected in TeamSpeak 3 Server up to 3.13.7. This vulnerability affects unknown code of the component ECC Key Parser. Such manipulation leads to heap-based buffer overflow. The attack may be launched remotely. Upgrading to version 3.13.8 is able to resolve this issue. It is suggested to upgrade the affected component.
| CWE | CWE-122 CWE-119 |
| Vendor | n/a |
| Product | teamspeak 3 server |
| Published | May 27, 2026 |
| Last Updated | May 27, 2026 |
Stay Ahead of the Next One
Get instant alerts for n/a teamspeak 3 server
Be the first to know when new medium vulnerabilities affecting n/a teamspeak 3 server are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L/E:X/RL:O/RC:C Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Affected Versions
n/a / TeamSpeak 3 Server
3.13.0 3.13.1 3.13.2 3.13.3 3.13.4 3.13.5 3.13.6 3.13.7
References
vuldb.com: https://vuldb.com/vuln/366315 vuldb.com: https://vuldb.com/vuln/366315/cti modzero.com: https://modzero.com/en/advisories/mz-26-01-teamspeak/ files.teamspeak-services.com: https://files.teamspeak-services.com/docs/security/TS-SA-2026-001.html teamspeak.com: https://www.teamspeak.com/en/downloads/#server
Credits
Michael Imfeld (modzero)