File Hash Validation Bypass in NomadBranch.exe_CVE-2025-44016

8.8 / 10

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Description

A vulnerability in TeamViewer DEX Client (former 1E client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the service to incorrectly validate and process the file as trusted, enabling arbitrary code execution under the Nomad Branch service context.

AI Analysis

File hash validation bypass vulnerability in TeamViewer DEX Client, allowing arbitrary code execution under the Nomad Branch service context.

Basic Information

ID CVE-2025-44016

Source TV

Published Dec 11, 2025 at 11:24

Affected Product

Vendor TeamViewer

Product DEX

Affected Versions TeamViewer DEX 0
TeamViewer DEX 0
TeamViewer DEX 0
TeamViewer DEX 0

CWE Classification

CWE-20

AI Assessment

AI Score 8.8 / 10

AI Severity High

Vendor TeamViewer

Product TeamViewer DEX Client

Version < 25.11

References

www.teamviewer.com /en/resources/trust-center/security-bulletins/tv-2025-1005/

{
    "lastseen": "",
    "description": "A vulnerability in TeamViewer DEX Client (former 1E client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the service to incorrectly validate and process the file as trusted, enabling arbitrary code execution under the Nomad Branch service context.",
    "published": "2025-12-11T11:24:37.520Z",
    "modified": "2025-12-11T11:24:37.520Z",
    "type": "cve",
    "title": "File Hash Validation Bypass in NomadBranch.exe",
    "source": "TV",
    "references": "https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2025-1005/",
    "id": "CVE-2025-44016",
    "bulletinFamily": "",
    "cwe": [
        "CWE-20"
    ],
    "cvelist": null,
    "sourceData": "TeamViewer DEX 0\nTeamViewer DEX 0\nTeamViewer DEX 0\nTeamViewer DEX 0",
    "sourceHref": "",
    "cvss": {
        "score": 8.8,
        "severity": "HIGH",
        "vector": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
        "version": "3.1"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "DEX",
    "version": "0",
    "vendor": "TeamViewer",
    "ai_description": "File hash validation bypass vulnerability in TeamViewer DEX Client, allowing arbitrary code execution under the Nomad Branch service context.",
    "ai_severity": "High",
    "ai_vendor": "TeamViewer",
    "ai_product": "TeamViewer DEX Client",
    "ai_version": "< 25.11",
    "ai_score": 8.8
}