TeamSpeak 3 Server Connection State Management process_resend_queue use after free

5.3 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X

Description

A weakness has been identified in TeamSpeak 3 Server up to 3.13.7. This affects the function process_resend_queue of the component Connection State Management. This manipulation causes use after free. The attack may be initiated remotely. Upgrading to version 3.13.8 is able to mitigate this issue. The affected component should be upgraded.

Basic Information

ID CVE-2026-4390

Source VulDB

Published May 27, 2026 at 16:30

Modified May 27, 2026 at 17:58

Affected Product

Vendor n/a

Product TeamSpeak 3 Server

Version 3.13.0

Affected Versions n/a TeamSpeak 3 Server 3.13.0
n/a TeamSpeak 3 Server 3.13.1
n/a TeamSpeak 3 Server 3.13.2
n/a TeamSpeak 3 Server 3.13.3
n/a TeamSpeak 3 Server 3.13.4
n/a TeamSpeak 3 Server 3.13.5
n/a TeamSpeak 3 Server 3.13.6
n/a TeamSpeak 3 Server 3.13.7

CWE Classification

CWE-416 CWE-119

References

{
    "lastseen": "",
    "description": "A weakness has been identified in TeamSpeak 3 Server up to 3.13.7. This affects the function process_resend_queue of the component Connection State Management. This manipulation causes use after free. The attack may be initiated remotely. Upgrading to version 3.13.8 is able to mitigate this issue. The affected component should be upgraded.",
    "published": "2026-05-27T16:30:08.778Z",
    "modified": "2026-05-27T17:58:41.828Z",
    "type": "cve",
    "title": "TeamSpeak 3 Server Connection State Management process_resend_queue use after free",
    "source": "VulDB",
    "references": "https://vuldb.com/vuln/366314\nhttps://vuldb.com/vuln/366314/cti\nhttps://modzero.com/en/advisories/mz-26-01-teamspeak/\nhttps://files.teamspeak-services.com/docs/security/TS-SA-2026-001.html\nhttps://www.teamspeak.com/en/downloads/#server",
    "id": "CVE-2026-4390",
    "bulletinFamily": "",
    "cwe": [
        "CWE-416",
        "CWE-119"
    ],
    "cvelist": null,
    "sourceData": "n/a TeamSpeak 3 Server 3.13.0\nn/a TeamSpeak 3 Server 3.13.1\nn/a TeamSpeak 3 Server 3.13.2\nn/a TeamSpeak 3 Server 3.13.3\nn/a TeamSpeak 3 Server 3.13.4\nn/a TeamSpeak 3 Server 3.13.5\nn/a TeamSpeak 3 Server 3.13.6\nn/a TeamSpeak 3 Server 3.13.7",
    "sourceHref": "",
    "cvss": {
        "score": 5.3,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:L/SC:N/SI:N/SA:N/E:X",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "TeamSpeak 3 Server",
    "version": "3.13.0",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}

TeamSpeak 3 Server Connection State Management process_resend_queue use after free_CVE-2026-4390