QID 378769

Date Published: 2023-08-22

QID 378769: TeamViewer Improper Authorization Check Vulnerability

TeamViewer is a computer software package for remote control, desktop sharing, and file transfer between computers.

An improper authorization check of local device settings in TeamViewer Remote between version 15.41 and 15.42.7 for Windows and macOS allows an unprivileged user to change basic local device settings even though the options were locked.

Affected Versions:
TeamViewer Remote between version 15.41 and 15.42.7

Successfully exploitation of this vulnerability may allow an attacker to alter the configuration of local device settings.

CVSS V3 rated as Medium - 5.5 severity.

CVSS V2 rated as Medium - 4.6 severity.

Solution

For more details please refer to vendor advisory: TeamViewer

Vendor References

TeamViewer - www.teamviewer.com/en/trust-center/security-bulletins/tv-2023-1001/

CVEs related to QID 378769

CVE-2023-0837 |

Software Advisories

Advisory ID	Software	Component	Link
TV-2023-1001			www.teamviewer.com/en/trust-center/security-bulletins/tv-2023-1001/

By selecting these links, you may be leaving CVEreport webspace. We have provided these links to other websites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other websites that are more appropriate for your purpose. CVEreport does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, CVEreport does not endorse any commercial products that may be mentioned on these sites. Please address comments about any linked pages to [email protected].