TeamViewer DEX Client Vulnerability

HIGH (8.8)
cwe-20arbitrary-code-executioncontent-distribution-servicedex-clientnomadbranchteamviewerwindows

Threat Intelligence

Low Risk
EPSS Score: 0.04% chance of exploitation (percentile: 12%)
🔍 Detection Tools: None available in major open-source tools
⚔️ Exploit Availability: No public exploits found

How we test →

What is it?

The TeamViewer DEX Client is a software component used by some organizations to manage remote access and file sharing. This vulnerability allows attackers to bypass file integrity validation, potentially leading to arbitrary code execution under the Nomad Branch service context.

Am I affected?

You're affected if you use A vulnerability. Specific version info not stated in the advisory.

How to fix

To fix this vulnerability, upgrade to TeamViewer DEX Client version 25.11 or later from the official TeamViewer website: https://www.teamviewer.com/en/downloads.html

Immediate mitigations:

  1. Restrict network access to your Nomad Branch service (firewall it from the public internet)
  2. Audit admin account activity for suspicious access patterns
  3. Monitor for unauthorized token creation

References