TeamViewer Product Security Update Advisory

Sep 27 2024

Overview

An update has been released to address vulnerabilities in TeamViewer Product. Users of the affected versions are advised to update to the latest version.

Affected Products

CVE-2024-7479, CVE-2024-7481

TeamViewer Remote full client (Windows) versions: ~ 15.58.4 (excluded)
TeamViewer Remote Host (Windows) versions: ~ 15.58.4 (excluded)

Resolved Vulnerabilities

Improper validation of cryptographic signatures during the installation of VPN drivers via the TeamViewer_service.exe component could allow an attacker with local, non-privileged access on a Windows system to install the driver with elevated privileges (CVE-2024-7479)

Improperly validating cryptographic signatures during the installation of printer drivers via the TeamViewer_service.exe component could allow an attacker with local, non-privileged access on a Windows system to elevate their privileges and install the driver (CVE-2024-7481)

Vulnerability Patches

The following product-specific Vulnerability Patches have been made available in the latest update. If you are using an affected version, Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

CVE-2024-7479, CVE-2024-7481

TeamViewer Remote full client (Windows) version: 15.58.4
TeamViewer Remote Host (Windows) version: 15.58.4

References

[1] Improper signature verification of driver installation in TeamViewer Remote clients

https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2024-1006/?

[2] Download the latest version of TeamViewer for Windows

https://www.teamviewer.com/en/download/windows/

TeamViewer Product Security Update Advisory

Flatpak Security Update Advisory (CVE-2024-42472)

Cisco Family September 2024 Secondary Security Update Advisory

Tags:

Flatpak Security Update Advisory (CVE-2024-42472)

Cisco Family September 2024 Secondary Security Update Advisory