Home

Description

A vulnerability in TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to coerce the service into transmitting data to an arbitrary internal IP address, potentially leaking sensitive information.

PUBLISHED Reserved 2025-04-30 | Published 2025-12-11 | Updated 2025-12-11 | Assigner TV




MEDIUM: 4.3CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Problem types

CWE-20 Improper Input Validation

Product status

Default status
unaffected

Any version before 25.11.0.29
affected

Credits

Threat Hunt Team of Bank of America finder

References

www.teamviewer.com/...enter/security-bulletins/tv-2025-1005/

cve.org (CVE-2025-46266)

nvd.nist.gov (CVE-2025-46266)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.