TV-2024-1006

A vulnerability has been discovered in the TeamViewer Remote clients for Windows which allows local privilege escalation on a Windows system.

CVE-ID	CVE-2024-7479 CVE-2024-7481
Description	Improper verification of cryptographic signature in the TeamViewer_service.exe component of TeamViewer Remote full client & Host prior version 15.58.4 (and additional versions listed below) for Windows allows an attacker with local unprivileged access on a Windows system to elevate their privileges and install drivers. To exploit this vulnerability, an attacker needs local access to the Windows system. The vulnerability has been fixed with version 15.58.4 and additional versions listed below. We recommend updating to the latest available version.
CVSS3.1 Score	Base Score 8.8 (High)
CVSS3.1 Vector String	CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Problem type	CWE-347: Improper Verification of Cryptographic Signature

Product	Versions	Info
TeamViewer Full Client (Windows)	< 15.58.4	Download available
TeamViewer Full Client (Windows)	< 14.7.48796	Download available
TeamViewer Full Client (Windows)	< 13.2.36225	Download available
TeamViewer Full Client (Windows)	< 12.0.259312	Download available
TeamViewer Full Client (Windows)	< 11.0.259311	Download available
TeamViewer Host (Windows)	< 15.58.4	Download available
TeamViewer Host (Windows)	< 14.7.48796	Download available
TeamViewer Host (Windows)	< 13.2.36225	Download available
TeamViewer Host (Windows)	< 12.0.259312	Download available
TeamViewer Host (Windows)	< 11.0.259311	Download available

Update to the latest version (15.58.4 or the latest version available)

We thank Peter Gabaldon (https://pgj11.com/) working with Trend Micro Zero Day Initiative for the discovery and the responsible disclosure.

Improper signature verification of driver installation in TeamViewer Remote clients