CVE-2022-50931 HIGH

CVE-2022-50931: TeamSpeak 3.5.6 - Insecure File Permissions

Vendor Teamspeak
Product TeamSpeak
Weakness CWE-732
Published January 13, 2026
Last update March 5, 2026

CVSS base score

8.5/10
Attack vector Local
Attack complexity Low
Privileges required Low
User interaction None
Confidentiality
Integrity

CVSS vector

CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

What the vulnerability does

01Description

TeamSpeak 3.5.6 contains an insecure file permissions vulnerability that allows local attackers to replace executable files with malicious binaries. Attackers can replace system executables like ts3client_win32.exe with custom files to potentially gain SYSTEM or Administrator-level access.

Key dates

02Disclosure timeline

January 13, 2026 CVE published
March 5, 2026 Record updated