CVE-2026-23571 MEDIUM

CVE-2026-23571: Command Injection in 1E-Nomad-RunPkgStatusRequest Instruction in TeamViewer DEX

Vendor Teamviewer

Product DEX

Weakness CWE-20 · Input validation

Published January 29, 2026

Last update January 29, 2026

View on NVD All CVEs

CVSS base score

6.8/10

Attack vector Network

Attack complexity Low

Privileges required High

User interaction Required

Confidentiality High

Integrity High

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A command injection vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-Nomad-RunPkgStatusRequest instruction. Improper input validation allows authenticated attackers with actioner privilege to run elevated arbitrary commands on connected hosts via malicious commands injected into the instruction’s input field. Users of 1E Client version 24.5 or higher are not affected.

Key dates

02Disclosure timeline

January 29, 2026 CVE published

January 29, 2026 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2026-23571 CWE — Common Weakness Enumeration https://cwe.mitre.org/data/definitions/20.html

Related vulnerabilities

CVE-2026-23571: Command Injection in 1E-Nomad-RunPkgStatusRequest Instruction in TeamViewer DEX

01Description

02Disclosure timeline

03References

04Related CVE