CVE-2026-23572: High Vulnerability in TeamViewer Full and Host Clients

CVE-2026-23572 is classified as a high-severity vulnerability with a CVSS score of 7.2. This vulnerability allows an authenticated user to bypass additional access controls within the TeamViewer Full and Host clients across Windows, macOS, and Linux platforms. The issue arises from improper access control configurations that permit users to exploit the 'Allow after confirmation' setting in a remote session.

The potential risk to organizations includes unauthorized access before local confirmation is granted. This vulnerability necessitates that users authenticate for remote sessions using ID/password, Session Link, or Easy Access prior to exploitation. Given the nature of this vulnerability, organizations should prioritize patching immediately.

Exploitability is high, and although there is no public exploit available, the severity of this issue necessitates an urgent response from security teams. Organizations utilizing TeamViewer should assess their environments for affected versions and ensure that they are updated to version 15.74.5 or later.

The discovery of this vulnerability and its implications underline the importance of maintaining strict access controls in remote collaboration tools. Security teams must ensure that configurations are reviewed and strengthened to prevent unauthorized access.

Vulnerability Details

This vulnerability allows an authenticated user to bypass additional access controls with the 'Allow after confirmation' configuration in a remote session. The affected products include TeamViewer Full and Host clients prior to version 15.74.5. The vulnerability was published on February 5, 2026.

Technical Analysis

The root cause of this vulnerability is improper access control, classified under CWE-863. The attack vector is network-based, with low complexity and high privileges required for exploitation. User interaction is not required, and the vulnerability has a high impact on confidentiality, integrity, and availability.

Risk & Impact Analysis

The real-world risk of this vulnerability is significant, especially for organizations that rely on remote access tools for business operations. The potential for unauthorized access prior to local confirmation can lead to data breaches, loss of sensitive information, and reputational damage. Organizations should assess the urgency of this vulnerability based on its CVSS score of 7.2 and prioritize remediation efforts.

Exploitation Status

Affected Versions

All versions prior to vendor patch 15.74.5 are affected by this vulnerability. Organizations should ensure that they are running the latest version to mitigate risks associated with this vulnerability.

Mitigation & Remediation

To remediate this vulnerability, organizations should upgrade to TeamViewer version 15.74.5 or later. If immediate upgrade is not feasible, organizations can implement additional access controls and monitor remote session activities. Regular audits of access configurations and implementing strict authentication measures are recommended to reduce the risk of unauthorized access.

Detection Guidance

Organizations should monitor logs for any unauthorized access attempts and unusual remote session behavior. Behavioral anomalies may indicate attempts to exploit this vulnerability. Network signatures associated with TeamViewer sessions should also be analyzed to detect potential exploitation.

AppSecure Threat Intelligence Insight

CVE-2026-23572 represents a critical reminder of the necessity for strict access controls in remote collaboration tools. As organizations increasingly adopt remote working environments, the attack surface expands significantly. Security teams must prioritize the assessment and mitigation of vulnerabilities to protect sensitive data from unauthorized access.

For further insights, organizations should consider engaging in penetration testing to identify similar weaknesses.

Additionally, organizations should keep abreast of trends in vulnerability exposure and invest in regular security assessments to ensure their defenses remain robust.