Ghostwire
Home / Vulnerabilities / CVE-2026-4391

CVE-2026-4391: A security vulnerability has been detected in TeamSpeak 3 Server up to 3.13.7. This vulnerability affects unknown code...

MEDIUM CVSS 5.5

Published: May 27, 2026 | Last Modified: May 27, 2026

Description

A security vulnerability has been detected in TeamSpeak 3 Server up to 3.13.7. This vulnerability affects unknown code of the component ECC Key Parser. Such manipulation leads to heap-based buffer overflow. The attack may be launched remotely. Upgrading to version 3.13.8 is able to resolve this issue. It is suggested to upgrade the affected component.

Ghostwire Analysis — What This Means Practically

This analysis is generated by Ghostwire from NVD, CISA KEV, EPSS, and open-source intelligence data. Verify findings through primary sources before acting.

Security Coverage (13 articles)

Tenable CVEs
CVE-2026-4391
 CVE Feed
CVE-2026-4391 - TeamSpeak 3 Server ECC Key heap-based overflow
 CVE Feed
CVE-2026-43919 - Apache HTTP Server Remote Code Execution Vulnerability
 CVE Feed
CVE-2026-43916 - pam_authnft: Heap buffer overflow in NETLINK_SOCK_DIAG reply walker
 Spain INCIBE via Google News
CVE-2026-43912 - INCIBE
 CVE Feed
CVE-2026-43914 - Vaultwarden: Brute-force protection bypass vulnerability
 Tenable CVEs
CVE-2026-43913
 Tenable CVEs
CVE-2026-43914
 CVE Feed
CVE-2026-43913 - Vaultwarden: Unconfirmed Owner Can Purge Entire Organization Vault
 Tenable CVEs
CVE-2026-43911
 CVE Feed
CVE-2026-43911 - Vaultwarden: Refresh tokens not invalidated on security stamp rotation
 CVE Feed
CVE-2026-43912 - Vaultwarden: Cross-Org Group Binding Enables Unauthorized Read And Write Access Into Another Organization
 Tenable CVEs
CVE-2026-43912

References