Remote File Creation Vulnerability in TEC-IT TBarCode Software
CVE-2022-4983

6.9MEDIUM

Key Information:

Vendor: Tec-it Datenverarbeitung Gmbh, Austria
Status: Tec-it Tbarcode
Vendor: CVE Published:; 12 November 2025

🔔 Create Tec-it Datenverarbeitung Gmbh, Austria Vulnerability Alert

What is CVE-2022-4983?

The TEC-IT TBarCode software, specifically version 11.15, has a vulnerability in its TBarCode11.ocx ActiveX control that arises from improper licensing handling through INI files. This flaw allows an attacker to remotely create files on the host filesystem. The repercussions of this could lead to significant security breaches, as it permits the alteration or injection of unauthorized files that may facilitate code execution or establish persistence under the context of the affected process. Proper mitigation and prompt updates are essential to safeguard against potential exploitations.

Affected Version(s)

TEC-IT TBarCode 11.15

References

https://www.tec-it.com/en/software/barcode-software/tbarc...

release-notespatch

https://www.vulncheck.com/advisories/tec-it-tbarcode-sdk-...

third-party-advisory

CVSS V4

Score:

6.9

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Attack Required:

None

Privileges Required:

Undefined

User Interaction:

Unknown

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 12, 2025
Vulnerability Reserved
Nov 12, 2025

JSON