CVE-2025-44016HIGH 8.8EPSS p21.4%

CVE-2025-44016CVE-2025-44016

Description

A vulnerability in TeamViewer DEX Client (former 1E client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the service to incorrectly validate and process the file as trusted, enabling arbitrary code execution under the Nomad Branch service context.

Scoring

CVSS 3.18.8 (HIGH)
VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS0.30% probability of exploitation · percentile 21.4% · 2026-06-19T12:03:05Z
Published2025-12-11
Last modified2026-01-14

Underlying weaknesses· 1

CWE-20

References

  1. https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2025-1005/

1

TypeTargetConfidenceTier
WeaknessImproper Input Validationcwe-200%live

Related by meaning· 6

Nearest entities by semantic similarity across the cs-graph corpus.

CVE
CVE-2026-23568
CVE
CVE-2025-21297
CVE
CVE-2025-24035
CVE
CVE-2025-48817
CVE
CVE-2025-24045
CVE
CVE-2025-21176
Sourced from NVD + FIRST.org EPSS. Curated for EU compliance use cases by Adam Lundqvist, Founder at SQUR.