What is CVE-2026-8381?

CVE-2026-8381 is a medium-severity vulnerability in Teamviewer Dex (On-premises), classified under Missing Authorization. CVSS score: 5.4/10. Published 2026-05-22.

How severe is CVE-2026-8381?

Medium severity. CVSS v3 base score is 5.4 out of 10.

Auth bypass in Teamviewer Dex (On-premises)

CVE-2026-8381

A broken access control vulnerability exists in the TeamViewer DEX Platform (On‑Premises) prior version 9.2. Certain backend API endpoints do not correctly enforce authorization checks, allowing an authenticated user with low privileges to…

Vulnerability class: Broken Access Control

EPSS: 0.000 (10.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 5.4 (Medium). Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N.

Affected products

Teamviewer Dex (On-premises) — versions 0

Weakness classification (CWE)

CWE-862 — Missing Authorization

References

psirt@teamviewer.com

Frequently asked questions

What is CVE-2026-8381?: CVE-2026-8381 is a medium-severity vulnerability in Teamviewer Dex (On-premises), classified under Missing Authorization. CVSS score: 5.4/10. Published 2026-05-22.
How severe is CVE-2026-8381?: Medium severity. CVSS v3 base score is 5.4 out of 10.