CVE-2025-44016 — HIGH (8.8)

Q: How severe is CVE-2025-44016?

CVE-2025-44016 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2025-44016?

Check the references section above for vendor advisories and patch information. Affected products include: Teamviewer Digital Employee Experience, Microsoft Windows.

Vulnerability Description

A vulnerability in TeamViewer DEX Client (former 1E client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to bypass file integrity validation via a crafted request. By providing a valid hash for a malicious file, an attacker can cause the service to incorrectly validate and process the file as trusted, enabling arbitrary code execution under the Nomad Branch service context.

CVSS Score

8.8

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality

HIGH

Integrity

HIGH

Availability

HIGH

Affected Products

Vendor	Product	Versions
Teamviewer	Digital Employee Experience	< 25.11
Microsoft	Windows	-

Related Weaknesses (CWE)

CWE-20

References

https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2025-Vendor Advisory

FAQ

What is CVE-2025-44016?

CVE-2025-44016 is a vulnerability with a CVSS score of 8.8 (HIGH). A vulnerability in TeamViewer DEX Client (former 1E client) - Content Distribution Service (NomadBranch.exe) prior version 25.11 for Windows allows malicious actors to bypass file integrity validation...

How severe is CVE-2025-44016?

CVE-2025-44016 has been rated HIGH with a CVSS base score of 8.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2025-44016?

Check the references section above for vendor advisories and patch information. Affected products include: Teamviewer Digital Employee Experience, Microsoft Windows.