Code Injection Vulnerability in Grouptime Teamwire Desktop Client 1.5.1 to 1.9.0 on Windows

CVE-2018-17170 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:P/A:P

Grouptime Teamwire Desktop Client 1.5.1 prior to 1.9.0 on Windows allows code injection via a template, leading to remote code execution. All backend versions prior to prod-2018-11-13-15-00-42 are affected.

Learn more about our Cis Benchmark Audit For Desktop Software.