CVE-2026-23563

Medium CVSS: 5.7

Improper Link Resolution Before File Access (invoked by 1E‑Explorer‑TachyonCore‑DeleteFileByPath instruction) in TeamViewer DEX - 1E Client before version 26.1 on Windows allows a low‑privileged local attacker to delete protected system files via a crafted RPC control junction or symlink that is followed when the delete instruction executes.

Vendor

Teamviewer

Product

Digital Employee Experience

CWE

CWE-59

Yayın Tarihi

2026-01-29 09:16:03

Güncelleme

2026-02-11 19:20:41

Source Identifier

psirt@teamviewer.com

KEV Date Added

Kategoriler

CWE-59 Digital Employee Experience MEDIUM Teamviewer 2026

Referanslar

https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2026-1002/

Benzer Kayıtlar

Medium

CVE-2026-23565

A vulnerability in TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior versi…

Medium

CVE-2026-23566

A vulnerability in TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior versi…

Medium

CVE-2026-23567

An integer underflow in the UDP command handler of the TeamViewer DEX Client (former 1E Client) - Content Distribution S…

Medium

CVE-2026-23568

An out-of-bounds read vulnerability in the TeamViewer DEX Client (former 1E Client) - Content Distribution Service (Noma…

Medium

CVE-2026-23569

An out-of-bounds read vulnerability in the TeamViewer DEX Client (former 1E Client) - Content Distribution Service (Noma…

Medium

CVE-2026-23570

A missing validation of a user-controlled value in the TeamViewer DEX Client (former 1E Client) - Content Distribution S…