The National CERT of the Republic of Serbia wishes to inform all users of TeamViewer application that a new update containing CVE 2020 13699 vulnerability patch has been published. This vulnerability can be abused by malicious attackers to acquire the user’s system passwords and compromise their desktop or mobile device.
The most worrying fact is that the attack can be carried out almost automatically, i.e. the interaction of the victim is not necessary – the attack is performed through a simple invitation to visit the malicous Internet page only once.
TeamViewer is one of the most popular applications offering support from a remote location, enabling the user to safely share desktop or mobile screen or take complete control online on their desktop or mobile device from any location.
The National CERT’s recommendation for the users working from home is to make sure all applications, antivirus softwares and OS are regularly updated, as well as to update their TeamViewer app as soon as possible.
More on this vulnerability abuse is available at this link