ByteOS Network

Host

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-44002

Assigner-TeamViewer Germany GmbH

View Details

Assigner-TeamViewer Germany GmbH

CVSS Score-6.1||MEDIUM

EPSS-Not Assigned

Published-26 Aug, 2025 | 11:05

Updated-26 Aug, 2025 | 14:39

Arbitrary File Creation via Symbolic Link leading to Denial-of-Service

Race Condition in the Directory Validation Logic in the TeamViewer Full Client and Host prior version 15.69 on Windows allows a local non-admin user to create arbitrary files with SYSTEM privileges, potentially leading to a denial-of-service condition, via symbolic link manipulation during directory verification.

Vendor-TeamViewer

Product-Host Full Client

CWE ID-CWE-367

Time-of-check Time-of-use (TOCTOU) Race Condition

CVE-2025-36537

Assigner-TeamViewer Germany GmbH

View Details

Assigner-TeamViewer Germany GmbH

CVSS Score-7||HIGH

EPSS-0.02% / 2.64%

7 Day CHG~0.00%

Published-24 Jun, 2025 | 14:24

Updated-26 Jun, 2025 | 18:58

Incorrect Permission Assignment for Critical Resource in TeamViewer Remote Management

Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management.

Vendor-TeamViewer

Product-Full Client (Win7/8)Full Client Host Host (Win7/8)

CWE ID-CWE-732

Incorrect Permission Assignment for Critical Resource