==================================================================== CERT-Renater Note d'Information No. 2024/VULN400 _____________________________________________________________________ DATE : 03/10/2024 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Systems running TeamViewer Full Client, TeamViewer Host versions prior to 15.58.4, 14.7.48796, 13.2.36225, 12.0.259312, 11.0.259311. ===================================================================== https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2024-1006/ _____________________________________________________________________ TV-2024-1006 Improper signature verification of driver installation in TeamViewer Remote clients Bulletin ID TV-2024-1006 Issue Date Sep 25, 2024 Last Update Sep 25, 2024 Priority Important CVSS 8.8 (High) Assigned CVE CVE-2024-7479, CVE-2024-7481 Affected Products TeamViewer Remote TeamViewer Tensor 1. Summary A vulnerability has been discovered in the TeamViewer Remote clients for Windows which allows local privilege escalation on a Windows system. 2. Vulnerability Details CVE-ID CVE-2024-7479 CVE-2024-7481 Description Improper verification of cryptographic signature in the TeamViewer_service.exe component of TeamViewer Remote full client & Host prior version 15.58.4 (and additional versions listed below) for Windows allows an attacker with local unprivileged access on a Windows system to elevate their privileges and install drivers. To exploit this vulnerability, an attacker needs local access to the Windows system. The vulnerability has been fixed with version 15.58.4 and additional versions listed below. We recommend updating to the latest available version. CVSS3.1 Score Base Score 8.8 (High) CVSS3.1 Vector String CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H Problem type CWE-347: Improper Verification of Cryptographic Signature 3. Affected products and versions Product Versions Info TeamViewer Full Client (Windows) < 15.58.4 Download available TeamViewer Full Client (Windows) < 14.7.48796 Download available TeamViewer Full Client (Windows) < 13.2.36225 Download available TeamViewer Full Client (Windows) < 12.0.259312 Download available TeamViewer Full Client (Windows) < 11.0.259311 Download available TeamViewer Host (Windows) < 15.58.4 Download available TeamViewer Host (Windows) < 14.7.48796 Download available TeamViewer Host (Windows) < 13.2.36225 Download available TeamViewer Host (Windows) < 12.0.259312 Download available TeamViewer Host (Windows) < 11.0.259311 Download available 4. Solutions and mitigations Update to the latest version (15.58.4 or the latest version available) 5. Acknowledgments We thank Peter Gabaldon (https://pgj11.com/) working with Trend Micro Zero Day Initiative for the discovery and the responsible disclosure. ========================================================= + CERT-RENATER | tel : 01-53-94-20-44 + + 23/25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email:cert@support.renater.fr + =========================================================