Improper initialization of default settings in TeamViewer Remote Client prior version 15.51.5 for Windows, Linux and macOS, allow a low privileged user to elevate privileges by changing the personal password setting and establishing a remote connection to a logged-in admin account.
The product does not properly assign, modify, track, or check privileges for an actor, creating an unintended sphere of control for that actor.