TeamViewer DEX Vulnerabilities Let Attackers Trigger DoS Attack and Expose Sensitive Data
\n \t
\n
<\/BR>
\n
\n \t
\n
<\/BR><\/p>\n
Multiple critical vulnerabilities in TeamViewer DEX Client\u2019s Content Distribution Service (NomadBranch.exe), formerly part of 1E Client.<\/p>\n
Affecting Windows versions before 25.11 and select older branches, the flaws stem from improper input validation (CWE-20), potentially enabling attackers on the local network to execute code, crash the service, or leak sensitive data.<\/p>\n
The most severe issue, CVE-2025-44016 (CVSS 3.1 base score: 8.8 High), allows bypassing file integrity checks. By crafting a request with a valid hash for malicious code, attackers can trick the service into treating it as trusted, enabling arbitrary code execution within the NomadBranch context.<\/p>\n
Complementing this are two medium-severity flaws. CVE-2025-12687 (CVSS 6.5 Medium) triggers a denial-of-service (DoS) crash via a specially crafted command, halting the service entirely. Meanwhile, CVE-2025-12687 (CVSS 4.3 Medium) coerces the service into sending data to an arbitrary internal IP address, risking the exposure of sensitive information.<\/p>\n
All vulnerabilities require adjacent network access (AV:A), making them viable threats in peer-to-peer or shared LAN environments. Notably, no evidence suggests wild exploitation to date. Installations with NomadBranch disabled in its default state are unaffected, as is the TeamViewer Remote\/Tensor \u201cDEX Essentials\u201d add-on.<\/p>\n
TeamViewer has patched<\/a> these in version 25.11.0.29 and hotfixes for legacy branches:<\/p>\n CVE-2025-46266 is fixed only in 25.11 and later. Organizations should prioritize updates, verify NomadBranch status, and segment networks to mitigate adjacent attacks.<\/p>\n As remote access tools come under increasing scrutiny, this disclosure underscores the need for robust input validation in content distribution services.<\/p>\n Follow us on Google News<\/a>, LinkedIn<\/a>, and X<\/a> for daily cybersecurity updates. Contact us<\/a> to feature your stories.<\/strong><\/p>\n The post TeamViewer DEX Vulnerabilities Let Attackers Trigger DoS Attack and Expose Sensitive Data<\/a> appeared first on Cyber Security News<\/a>.<\/p>\n<\/div>\n\n\n
\n \nRelease Version<\/th>\n Download Link<\/th>\n<\/tr>\n<\/thead>\n \n 25.11.0.29<\/td>\n 1E Client 25.11<\/td>\n<\/tr>\n \n 25.9.0.46 (HF-PLTPKG-524)<\/td>\n HF-PLTPKG-524<\/td>\n<\/tr>\n \n 25.5.0.53 LTSB (HF-PLTPKG-526)<\/td>\n HF-PLTPKG-526<\/td>\n<\/tr>\n \n 24.5.0.69 LTSB (HF-PLTPKG-525)<\/td>\n Support Portal<\/td>\n<\/tr>\n<\/tbody>\n<\/table>\n<\/figure>\n