Name of the Vulnerable Software and Affected Versions:

TeamViewer versions prior to 15.69

Description:

A race condition exists in the directory validation logic within the TeamViewer Full Client and Host on Windows. This allows a local, non-administrator user to create arbitrary files with SYSTEM privileges. This can lead to a denial-of-service condition through the manipulation of a symbolic link during directory verification.

Recommendations:

Update TeamViewer to version 15.69 or later.