PT-2026-5257 · Teamviewer · Teamviewer Dex Client+1
Published
2026-01-29
·
Updated
2026-02-11
·
CVE-2026-23570
CVSS v3.1
6.5
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N |
Name of the Vulnerable Software and Affected Versions
TeamViewer DEX Client (former 1E Client) versions prior to 26.1
Description
A flaw exists due to insufficient validation of user-supplied data within the Content Distribution Service (NomadBranch.exe) of the TeamViewer DEX Client. This allows a nearby attacker to manipulate log timestamps by sending specially crafted UDP Sync commands. Successful exploitation can lead to the creation of false or illogical datetime prefixes, which compromises the reliability of logs and hinders forensic analysis.
Recommendations
Update TeamViewer DEX Client (former 1E Client) to version 26.1 or later.
Fix
RCE
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
1E Client
Teamviewer Dex Client