Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2026-3502 | 1 Trueconf | 1 Trueconf | 2026-04-03 | N/A | 7.8 HIGH |
| TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update delivery path can substitute a tampered update payload. If the payload is executed or installed by the updater, this may result in arbitrary code execution in the context of the updating process or user. | |||||
| CVE-2025-66835 | 1 Trueconf | 1 Trueconf | 2026-01-09 | N/A | 7.1 HIGH |
| TrueConf Client 8.5.2 is vulnerable to DLL hijacking via crafted wfapi.dll allowing local attackers to execute arbitrary code within the user's context. | |||||