TeamViewer for Windows Vulnerability Lets Hackers Delete Files with SYSTEM Rights
gbhackers
A critical security vulnerability has been discovered in TeamViewer Remote Management for Windows, exposing systems to potential privilege escalation attacks.
The flaw, tracked as CVE-2025-36537, allows a local unprivileged attacker to delete arbitrary files with SYSTEM-level privileges, posing a significant risk to organizations relying on TeamViewer’s Remote Management features.
Vulnerability Overview
The vulnerability, assigned a CVSS score of 7.0 (High), stems from an incorrect permission assignment for critical resources in the TeamViewer Client (both Full and Host versions).
Specifically, the issue is linked to how the MSI rollback mechanism handles file deletions during uninstall or rollback processes.
By exploiting this mechanism, a low-privileged user with local access can delete files anywhere on the system as SYSTEM, potentially leading to further privilege escalation or system compromise.
| CVE ID | CVSS Score | Affected Features |
| CVE-2025-36537 | 7.0 (High) | Backup, Monitoring, Patch Mgmt |
Notably, this vulnerability only ...
Copyright of this story solely belongs to gbhackers . To see the full text click HERE