CVE-2023-0837

MEDIUM

TeamViewer Remote 15.41-15.42.7 - Unauthenticated Improper Authorization in Local Device Settings

Title source: llm

Description

An improper authorization check of local device settings in TeamViewer Remote between version 15.41 and 15.42.7 for Windows and macOS allows an unprivileged user to change basic local device settings even though the options were locked. This can result in unwanted changes to the configuration.

References (1)

Core 1

Core References

Vendor Advisory

https://www.teamviewer.com/en/trust-center/security-bulletins/tv-2023-1001/

Scores

CVSS v3 6.6

EPSS 0.0025

EPSS Percentile 15.9%

Attack Vector LOCAL

CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-285

Status published

Products (1)

teamviewer/remote 15.41 - 15.42.8

Published Jun 14, 2023

Tracked Since Feb 18, 2026