Wildzarek

**Name of the Vulnerable Software and Affected Versions** TeamViewer Linux versions prior to 15.28 **Description** The issue is related to improper execution of a deletion command for the connection password in case of a process crash. An attacker could establish a remote connection by reusing the not properly deleted connection password if they have knowledge of the crash event, the TeamViewer ID, and either possession of the pre-crash connection password or local authenticated access to the machine. The vulnerability is also associated with resource release errors, which could allow an attacker to elevate their privileges. **Recommendations** For TeamViewer Linux versions prior to 15.28, update to version 15.28 or later to resolve the issue. As a temporary workaround, consider restricting local authenticated access to the machine and ensuring that connection passwords are securely managed to minimize the risk of exploitation.