UNKNOWNCVE-2026-3502
TrueConf Client Update Integrity Verification Bypass
Platform
windows
Component
trueconf-client
TrueConf Client downloads application update code and applies it without performing verification. An attacker who is able to influence the update delivery path can substitute a tampered update payload. If the payload is executed or installed by the updater, this may result in arbitrary code execution in the context of the updating process or user.
How to fix
Actualice TrueConf Client a una versión posterior a 8.5.2. Esto solucionará la falta de verificación de integridad en las actualizaciones, previniendo la ejecución de código arbitrario por parte de atacantes.
Monitor your dependencies automatically
Get notified when new vulnerabilities affect your projects. Free forever.
Start free