Primary

Context

TeamViewer DEX Improper Link Resolution Vulnerability Allowing Deletion of Protected System Files

Vulnerability

A vulnerability exists in TeamViewer DEX (formerly 1E DEX) - 1E Client, prior to version 26.1, on Windows. It involves improper link resolution before file access, specifically with the 1E-Explorer-TachyonCore-DeleteFileByPath instruction. This vulnerability allows a low-privileged local attacker to delete protected system files by exploiting a crafted RPC control junction or symlink, which is followed during the execution of the delete instruction.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of protected system files, potentially causing system instability or loss of critical data.

Remediation

Users are advised to update to TeamViewer DEX 1E Client version 26.1 or higher.

Added: Jan 29, 2026, 9:23 AM

Updated: Jan 29, 2026, 5:17 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.9

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.8

exploitability

2.9

remediation

0.0

relevance

2.5

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TeamViewer DEX Improper Link Resolution Vulnerability Allowing Deletion of Protected System Files

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating