TeamViewer DEX Client Out-of-Bounds Read Vulnerability in Content Distribution Service Allowing Memory Leak and Denial-of-Service
Vulnerability
An out-of-bounds read vulnerability has been identified in the TeamViewer DEX Client (formerly 1E Client) Content Distribution Service (NomadBranch.exe) for Windows, prior to version 26.1. This vulnerability allows a remote attacker to leak stack memory and cause a denial-of-service by sending a crafted request. The leaked memory could potentially be used to bypass Address Space Layout Randomization (ASLR) and exploit other vulnerabilities on the affected system.
Impact
Exploitation of this vulnerability leads to unauthorized memory access, allowing for stack memory leakage. This could be used to bypass ASLR and facilitate the exploitation of other vulnerabilities on the system. Additionally, the vulnerability causes a denial-of-service by crashing the NomadBranch.exe process.
Remediation
Users are advised to update to TeamViewer DEX Client version 26.1 or the latest available version. Installations with the Content Distribution Service disabled are not affected.
Vulnerability Rating
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.