CVE-2026-23571

Name of the Vulnerable Software and Affected Versions TeamViewer DEX (former 1E DEX) versions prior to 24.5

Description A command injection issue exists in TeamViewer DEX (formerly 1E DEX) related to the 1E-Nomad-RunPkgStatusRequest instruction. Insufficient input validation allows attackers with actioner privileges to execute arbitrary commands with elevated permissions on connected hosts by injecting malicious commands into the input field of the instruction.

Recommendations Update to version 24.5 or later.