cvedb.io
CVE-2026-23570
MEDIUM · CVSS 6.5
EPSS exploitation probability: 0%
Published 2026-01-29T09:16:04.737 · Last modified 2026-06-17T10:21:47.647

Summary

A missing validation of a user-controlled value in the TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior version 26.1 for Windows allows an adjacent network attacker to tamper with log timestamps via crafted UDP Sync command. This could result in forged or nonsensical datetime prefixes and compromising log integrity and forensic correlation.

Affected products

teamviewer — digital_employee_experience

Does this affect you?

Add your gear to cvedb and we'll alert you only when teamviewer ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.