CNNVD-202512-5084 Information

CNNVD ID

CNNVD-202512-5084

Related CVE

CVE-2025-66835

• CNNVD Published: 2025-12-30

Description (Chinese)

TrueConf Client是立陶宛TrueConf公司的一个视频会议与协作软件客户端。 TrueConf Client 8.5.2版本存在安全漏洞，该漏洞源于通过特制wfapi.dll容易受到DLL劫持攻击，可能导致执行任意代码。

Description (English)

TrueConf Clinic is a videoconferencing and collaboration software client of TrueConf in Lithuania. TrueConf Clinic 8.5.2 has a security loophole, which stems from its vulnerability to DLL hijackings through the design Wfapi.dll, which may lead to the enforcement of arbitrary codes.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

TrueConf

Published

2025-12-30

Last Modified

2026-02-24

References

http://trueconf.com https://github.com/x00nullbit/CVE-References/blob/main/CVE-2025-66835/README.md https://access.redhat.com/security/cve/cve-2025-66835

Patch

https://trueconf.com/products/tcsf/trueconf-server-free.html