PT-2025-50601 · Teamviewer+1 · Teamviewer Dex+1
Published
2025-12-11
·
Updated
2025-12-11
·
CVE-2025-64994
CVSS v3.1
6.7
Medium
| Vector | AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
TeamViewer DEX (former 1E DEX) versions prior to 17.1
Description
A privilege escalation issue exists in TeamViewer DEX (formerly 1E DEX) due to improper handling of executable search paths within the
1E-Nomad-SetWorkRate instruction. Local attackers with write access to a PATH directory on a device could exploit this to escalate privileges and execute arbitrary code as SYSTEM.Recommendations
Update TeamViewer DEX to version 17.1 or later.
Fix
LPE
Uncontrolled Search Path Element
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
1E Dex
Teamviewer Dex