CVE-2026-23570

Log timestamp tampering vulnerability in Content Distribution Service

CVSS 6.5 MEDIUMEPSS 0.7%CWE-20

Vexday Risk Score

13Low

SSVC decision (CISA)

Track

No exploitation signal → monitor

CVSS 6.5EPSS 0.7%KEV nãoPoC —Nuclei —Metasploit —Patch —

Lifecycle

29 Jan 2026Published on NVD

Recommendation: Monitor — no exploitation signal at the moment.

A missing validation of a user-controlled value in the TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior version 26.1 for Windows allows an adjacent network attacker to tamper with log timestamps via crafted UDP Sync command. This could result in forged or nonsensical datetime prefixes and compromising log integrity and forensic correlation.

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

Affected products

TeamViewer · DEX

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2026-1001/