CVE-2024-12363

Published Dec 11, 2024

Last updated 3 months ago

Overview

Description: Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24.12 on Windows allows a local authenticated user to delete arbitrary files. TeamViewer Patch & Asset Management is part of TeamViewer Remote Management.
Source: psirt@teamviewer.com
NVD status: Received

Risk scores

CVSS 3.1

Type: Secondary
Base score: 7.1
Impact score: 5.2
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:H
Severity: HIGH

Weaknesses

psirt@teamviewer.com: CWE-732

Hype score: Not currently trending

CVE-2024-12363 (CVSS:7.1, HIGH) is Awaiting Analysis. Insufficient permissions in the TeamViewer Patch & Asset Management component prior to version 24.12 on Windows allows a..https://t.co/roWbcBPaQP #cybersecurityawareness #cybersecurity #CVE #infosec #hacker #nvd #mitre
@cracbot
16 Dec 2024
21 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes

References