- Description
- Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a local unprivileged user to trigger arbitrary file deletion with SYSTEM privileges via leveraging the MSI rollback mechanism. The vulnerability only applies to the Remote Management features: Backup, Monitoring, and Patch Management.
- Source
- psirt@teamviewer.com
- NVD status
- Awaiting Analysis
CVSS 3.1
- Type
- Secondary
- Base score
- 7
- Impact score
- 5.9
- Exploitability score
- 1
- Vector string
- CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- 134c704f-9b21-4f2e-91b3-4a467353bcc0
- CWE-732
- Hype score
- Not currently trending
CVE-2025-36537: TeamViewer Remote Management Flaw #CISO https://t.co/UZFT5R18ha
@compuchris
13 Jul 2025
14 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TeamViewer Incorrect Permission Assignment Local Privilege Escalation Vulnerability (CVE-2025-36537) #CVE202536537 #CyberSecurity #PrivilegeEscalationVulnerability #TeamViewer https://t.co/9uy4LwGUWK https://t.co/ElfNR7hDJm
@SystemTek_UK
26 Jun 2025
12 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
חולשת אבטחה בTeamviewer CVE-2025-36537 עם דירוג cvss3 של 7 (high) מאפשרת למשתמשים ללא הרשאות לקבל הרשאות system שיכולות לאפשר בעיקר מחיקה של קבצים (לפי איך שצוין). CVSS:3.1/AV:L/AC:H/PR
@NirRoitman
26 Jun 2025
23 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
0 Quotes
⚠️Vulnerabilidad en TeamViewer ❗CVE-2025-36537 ➡️Más info: https://t.co/ruvu92aOwF https://t.co/KTYqRNP4Yy
@CERTpy
25 Jun 2025
153 Impressions
0 Retweets
1 Like
1 Bookmark
0 Replies
0 Quotes
TeamViewer releases a security update for CVE-2025-36537, a flaw allowing local users to escalate privileges and delete files via incorrect permissions in Remote Management on Windows. Affected versions include legacy and current builds. ⚠️ #SecurityUpda… https://t.co/YzQh9
@TweetThreatNews
25 Jun 2025
51 Impressions
0 Retweets
2 Likes
0 Bookmarks
0 Replies
0 Quotes
⚡️The vulnerability details are now available: https://t.co/yBJQvO5uFu 🚨🚨CVE-2025-36537 exposes TeamViewer Remote Management on Windows to a severe flaw: local unprivileged attackers can DELETE files with SYSTEM privileges! ZoomEye Dork👉app="TeamViewer" Over 15K+ i
@zoomeye_team
25 Jun 2025
614 Impressions
0 Retweets
9 Likes
3 Bookmarks
0 Replies
0 Quotes
🚨 Critical vuln in TeamViewer Remote Management for Windows (CVE-2025-36537) allows local attackers to delete arbitrary files with SYSTEM privileges! Update to v15.67+ ASAP if you use Remote Management features. #Cybersecurity #TeamViewer #Vulnerability https://t.co/Mr8i16LMM
@fernandokarl
25 Jun 2025
66 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
TeamViewer disclosed a high-severity flaw (CVE-2025-36537) in its Remote Management for Windows, allowing local unprivileged users to delete files with SYSTEM privileges #TeamViewer #Cybersecurity #Vulnerability #PrivilegeEscalation #PatchNow https://t.co/5On0CbNBOJ
@the_yellow_fall
25 Jun 2025
13 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-36537 TeamViewer Backup and Monitoring Permission Bypass Enabling Privileged File Deletion https://t.co/YWWc4NUk9O
@VulmonFeeds
24 Jun 2025
37 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2025-36537 Incorrect Permission Assignment for Critical Resource in the TeamViewer Client (Full and Host) of TeamViewer Remote and Tensor prior Version 15.67 on Windows allows a… https://t.co/LVCTo2EdMg
@CVEnew
24 Jun 2025
354 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes