Primary

Context

TeamViewer DEX Client Log Injection Vulnerability in Content Distribution Service

Vulnerability

A log injection vulnerability has been identified in the TeamViewer DEX Client (formerly 1E Client) Content Distribution Service (NomadBranch.exe) for Windows, prior to version 26.1. This vulnerability allows an attacker on the adjacent network to inject, tamper with, or forge log entries in the Nomad Branch.log file. The exploitation involves sending crafted data to the UDP network handler, which can compromise the integrity of the logs and disrupt non-repudiation.

Impact

Exploitation of this vulnerability can lead to unauthorized modification of log entries, affecting the integrity of the logs and disrupting non-repudiation.

Remediation

Users are advised to update to TeamViewer DEX Client version 26.1 or the latest available version. Installations with the Content Distribution Service disabled are not affected.

Added: Jan 29, 2026, 9:21 AM

Updated: Jan 29, 2026, 5:14 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.5

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

0.6

exploitability

4.5

remediation

0.0

relevance

2.4

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

TeamViewer DEX Client Log Injection Vulnerability in Content Distribution Service

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating