Search

Find a vulnerability

Search criteria

    2 vulnerabilities found for Host (Win7/8) by TeamViewer

    CVE-2025-36537 (GCVE-0-2025-36537)

    Vulnerability from nvd – Published: 2025-06-24 14:24 – Updated: 2025-06-24 15:31
    VLAI
    Title
    Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management
    Summary
    Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management
    • CWE-732 - Incorrect Permission Assignment for Critical Resource
    Assigner
    TV
    Impacted products
    Vendor Product Version
    TeamViewer Full Client Affected: 15.0.0 , < 15.67 (custom)
    Affected: 14.0.0 , < 14.7.48809 (custom)
    Affected: 13.0.0 , < 13.2.36227 (custom)
    Affected: 12.0.0 , < 12.0.259325 (custom)
    Affected: 11.0.0 , < 11.0.259324 (custom)
    Create a notification for this product.
    TeamViewer Host Affected: 15.0.0 , < 15.67 (custom)
    Affected: 14.0.0 , < 14.7.48809 (custom)
    Affected: 13.0.0 , < 13.2.36227 (custom)
    Affected: 12.0.0 , < 12.0.259325 (custom)
    Affected: 11.0.0 , < 11.0.259324 (custom)
    Create a notification for this product.
    TeamViewer Full Client (Win7/8) Affected: 15.0.0 , < 15.64.5 (custom)
    Create a notification for this product.
    TeamViewer Host (Win7/8) Affected: 15.0.0 , < 15.64.5 (custom)
    Create a notification for this product.
    Credits
    Giuliano Sanfins (0x_alibabas) from SiDi, working with Trend Micro Zero Day Initiativ
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-36537",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-24T14:45:18.947774Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-732",
                    "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-24T15:31:17.734Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Full Client",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.67",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "14.7.48809",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "13.2.36227",
                  "status": "affected",
                  "version": "13.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "12.0.259325",
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.0.259324",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Host",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.67",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "14.7.48809",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "13.2.36227",
                  "status": "affected",
                  "version": "13.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "12.0.259325",
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.0.259324",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Full Client (Win7/8)",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.64.5",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Host (Win7/8)",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.64.5",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Giuliano Sanfins (0x_alibabas) from SiDi, working with Trend Micro Zero Day Initiativ"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eIncorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management.\u003c/span\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\u0026nbsp;\u003c/span\u003e"
                }
              ],
              "value": "Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management",
                  "lang": "en"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-24T14:44:54.915Z",
            "orgId": "13430f76-86eb-43b2-a71c-82c956ef31b6",
            "shortName": "TV"
          },
          "references": [
            {
              "url": "https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2025-1002/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to the latest version."
                }
              ],
              "value": "Update to the latest version."
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "13430f76-86eb-43b2-a71c-82c956ef31b6",
        "assignerShortName": "TV",
        "cveId": "CVE-2025-36537",
        "datePublished": "2025-06-24T14:24:08.394Z",
        "dateReserved": "2025-04-30T08:08:15.966Z",
        "dateUpdated": "2025-06-24T15:31:17.734Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2025-36537 (GCVE-0-2025-36537)

    Vulnerability from cvelistv5 – Published: 2025-06-24 14:24 – Updated: 2025-06-24 15:31
    VLAI
    Title
    Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management
    Summary
    Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management.
    SSVC
    Exploitation: none Automatable: no Technical Impact: total
    CISA Coordinator (v2.0.3)
    CWE
    • Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management
    • CWE-732 - Incorrect Permission Assignment for Critical Resource
    Assigner
    TV
    Impacted products
    Vendor Product Version
    TeamViewer Full Client Affected: 15.0.0 , < 15.67 (custom)
    Affected: 14.0.0 , < 14.7.48809 (custom)
    Affected: 13.0.0 , < 13.2.36227 (custom)
    Affected: 12.0.0 , < 12.0.259325 (custom)
    Affected: 11.0.0 , < 11.0.259324 (custom)
    Create a notification for this product.
    TeamViewer Host Affected: 15.0.0 , < 15.67 (custom)
    Affected: 14.0.0 , < 14.7.48809 (custom)
    Affected: 13.0.0 , < 13.2.36227 (custom)
    Affected: 12.0.0 , < 12.0.259325 (custom)
    Affected: 11.0.0 , < 11.0.259324 (custom)
    Create a notification for this product.
    TeamViewer Full Client (Win7/8) Affected: 15.0.0 , < 15.64.5 (custom)
    Create a notification for this product.
    TeamViewer Host (Win7/8) Affected: 15.0.0 , < 15.64.5 (custom)
    Create a notification for this product.
    Credits
    Giuliano Sanfins (0x_alibabas) from SiDi, working with Trend Micro Zero Day Initiativ
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "metrics": [
              {
                "other": {
                  "content": {
                    "id": "CVE-2025-36537",
                    "options": [
                      {
                        "Exploitation": "none"
                      },
                      {
                        "Automatable": "no"
                      },
                      {
                        "Technical Impact": "total"
                      }
                    ],
                    "role": "CISA Coordinator",
                    "timestamp": "2025-06-24T14:45:18.947774Z",
                    "version": "2.0.3"
                  },
                  "type": "ssvc"
                }
              }
            ],
            "problemTypes": [
              {
                "descriptions": [
                  {
                    "cweId": "CWE-732",
                    "description": "CWE-732 Incorrect Permission Assignment for Critical Resource",
                    "lang": "en",
                    "type": "CWE"
                  }
                ]
              }
            ],
            "providerMetadata": {
              "dateUpdated": "2025-06-24T15:31:17.734Z",
              "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
              "shortName": "CISA-ADP"
            },
            "title": "CISA ADP Vulnrichment"
          }
        ],
        "cna": {
          "affected": [
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Full Client",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.67",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "14.7.48809",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "13.2.36227",
                  "status": "affected",
                  "version": "13.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "12.0.259325",
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.0.259324",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Host",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.67",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "14.7.48809",
                  "status": "affected",
                  "version": "14.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "13.2.36227",
                  "status": "affected",
                  "version": "13.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "12.0.259325",
                  "status": "affected",
                  "version": "12.0.0",
                  "versionType": "custom"
                },
                {
                  "lessThan": "11.0.259324",
                  "status": "affected",
                  "version": "11.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Full Client (Win7/8)",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.64.5",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            },
            {
              "defaultStatus": "unaffected",
              "platforms": [
                "Windows"
              ],
              "product": "Host (Win7/8)",
              "vendor": "TeamViewer",
              "versions": [
                {
                  "lessThan": "15.64.5",
                  "status": "affected",
                  "version": "15.0.0",
                  "versionType": "custom"
                }
              ]
            }
          ],
          "credits": [
            {
              "lang": "en",
              "type": "finder",
              "value": "Giuliano Sanfins (0x_alibabas) from SiDi, working with Trend Micro Zero Day Initiativ"
            }
          ],
          "descriptions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003eIncorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management.\u003c/span\u003e\u003cspan style=\"background-color: rgb(255, 255, 255);\"\u003e\u0026nbsp;\u003c/span\u003e"
                }
              ],
              "value": "Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management."
            }
          ],
          "impacts": [
            {
              "capecId": "CAPEC-233",
              "descriptions": [
                {
                  "lang": "en",
                  "value": "CAPEC-233 Privilege Escalation"
                }
              ]
            }
          ],
          "metrics": [
            {
              "cvssV3_1": {
                "attackComplexity": "HIGH",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 7,
                "baseSeverity": "HIGH",
                "confidentialityImpact": "HIGH",
                "integrityImpact": "HIGH",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
                "version": "3.1"
              },
              "format": "CVSS",
              "scenarios": [
                {
                  "lang": "en",
                  "value": "GENERAL"
                }
              ]
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management",
                  "lang": "en"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2025-06-24T14:44:54.915Z",
            "orgId": "13430f76-86eb-43b2-a71c-82c956ef31b6",
            "shortName": "TV"
          },
          "references": [
            {
              "url": "https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2025-1002/"
            }
          ],
          "solutions": [
            {
              "lang": "en",
              "supportingMedia": [
                {
                  "base64": false,
                  "type": "text/html",
                  "value": "Update to the latest version."
                }
              ],
              "value": "Update to the latest version."
            }
          ],
          "source": {
            "discovery": "UNKNOWN"
          },
          "title": "Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management",
          "x_generator": {
            "engine": "Vulnogram 0.2.0"
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "13430f76-86eb-43b2-a71c-82c956ef31b6",
        "assignerShortName": "TV",
        "cveId": "CVE-2025-36537",
        "datePublished": "2025-06-24T14:24:08.394Z",
        "dateReserved": "2025-04-30T08:08:15.966Z",
        "dateUpdated": "2025-06-24T15:31:17.734Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }