Primary

Context

TeamViewer Remote and Tensor Privilege Escalation Vulnerability via Symbolic Link Spoofing

Vulnerability

Patched

A privilege escalation vulnerability has been identified in the TeamViewer Full Client and Host for Windows, specifically in versions prior to 15.70 of TeamViewer Remote and Tensor. This vulnerability arises from improper handling of symbolic links, which allows an attacker with local, unprivileged access to a device without adequate malware protection to spoof the update file path. Exploitation of this vulnerability could lead to unauthorized access to sensitive information.

Impact

Exploitation of this vulnerability could result in unauthorized access to sensitive information by escalating privileges on the affected device.

Remediation

Users are advised to update to TeamViewer version 15.70 or the latest available version. The vulnerability has been fixed in version 15.70.

Added: Oct 1, 2025, 3:24 PM

Updated: Oct 1, 2025, 3:24 PM

Vulnerability Rating

Custom Algorithm

spread

10.0

impact

5.0

exploitability

4.0

remediation

7.9

relevance

0.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

10.0

impact

5.0

exploitability

4.0

remediation

7.9

relevance

0.6

threat

0.0

urgency

2.9

incentive

0.8

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TeamViewer Remote and Tensor Privilege Escalation Vulnerability via Symbolic Link Spoofing

Vulnerability

Impact

Remediation

Affected Products

TeamViewer Remote

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating