CVE-2026-23564 | THREATINT

Description

A vulnerability in TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior version 26.1 for Windows allows an attacker on the adjacent network to cause normally encrypted UDP traffic to be sent in cleartext. This can result in disclosure of sensitive information.

PUBLISHED Reserved 2026-01-14 | Published 2026-01-29 | Updated 2026-01-29 | Assigner TV

MEDIUM: 6.5CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Problem types

CWE-319 Cleartext Transmission of Sensitive Information

Product status

Default status

unaffected

Any version before 26.1

affected

Credits

Threat Hunt Team of Bank of America finder

References

www.teamviewer.com/...enter/security-bulletins/tv-2026-1001/

cve.org (CVE-2026-23564)

nvd.nist.gov (CVE-2026-23564)

Download JSON