TeamViewer DEX Client 26.1 NOMABRANCH.exe DoS via crafted requests
CVE-2026-23565 Published on January 29, 2026

Denial-of-Service in Content Distribution Service
A vulnerability in TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior version 26.1 for Windows allows an attacker on the adjacent network to cause the NomadBranch.exe process to terminate via crafted requests. This can result in a denial-of-service condition of the Content Distribution Service.

NVD

Vulnerability Analysis

Attack Vector:

ADJACENT_NETWORK

Attack Complexity:

LOW

Privileges Required:

NONE

User Interaction:

NONE

Scope:

UNCHANGED

Confidentiality Impact:

NONE

Integrity Impact:

NONE

Availability Impact:

HIGH

Weakness Type

NULL Pointer Dereference

A NULL pointer dereference occurs when the application dereferences a pointer that it expects to be valid, but is NULL, typically causing a crash or exit. NULL pointer dereference issues can occur through a number of flaws, including race conditions, and simple programming omissions.

Affected Versions

TeamViewer DEX:

Before 26.1 is affected.

Exploit Probability

EPSS

0.06%

Percentile

18.01%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

TeamViewer DEX Client 26.1 NOMABRANCH.exe DoS via crafted requestsCVE-2026-23565 Published on January 29, 2026

Vulnerability Analysis

Weakness Type

NULL Pointer Dereference

Affected Versions

Exploit Probability

TeamViewer DEX Client 26.1 NOMABRANCH.exe DoS via crafted requests
CVE-2026-23565 Published on January 29, 2026