News

Teamviewer 15.62 and other version updates available

Security leak allows attackers to expand their rights.

Teamviewer warns of a security vulnerability in the remote maintenance software for Windows. This allows attackers to expand their rights. Updated packages are available to plug the security hole.

The according security notice, the developers of Teamviewer write that due to insufficient filtering of separations of passed arguments in 'TeamViewer_service.exe*, attackers with low rights on the Windows system can expand their powers through argument injection (CVE-2025-0065, CVSS 7.8, risk high).

Update recommendation

To use the vulnerability, attackers must have access to the Windows system - which is the case anyway for an expansion of rights. Teamviewer has so far had no indication that the vulnerability has been or is being exploited in the wild.

The errors are found in Teamviewer Remote and Teamviewer Tensor. The company offers numerous updated packages that close the security gap. Teamviewer Full Client (Windows) 11.0.259318, 12.0.259319, 13.2.36226, 14.7.48799 and 15.62 as well as Teamviewer Host (Windows) 11.0.259318, 12.0.259319, 13.2.36226, 14.7.48799 and 15.62 are available for download on the Teamviewer download page.

Teamviewer recommends that IT managers update to the latest available software version. The manufacturer does not mention any other countermeasures that would mitigate the effects of the gap for a transitional period.

Security vulnerabilities in the Teamviewer remote maintenance software were last discovered in September 2024 and December 2024. There, too, attackers were able to expand their rights in the system, which was due to inadequate cryptographic checking of driver installations - this also allowed them to install drivers.

About Author

I am an editor at UpdateStar. I started as a support engineer, and am now specialized in writing about general software topics from a usability and performance angle among others. I telecommute from UpdateStar’s Berlin office, when I am not working remote as a digital nomad for UpdateStar.

Previous Article