{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-20T20:55:19.860","vulnerabilities":[{"cve":{"id":"CVE-2026-23570","sourceIdentifier":"psirt@teamviewer.com","published":"2026-01-29T09:16:04.737","lastModified":"2026-02-11T20:17:17.537","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A missing validation of a user-controlled value in the TeamViewer DEX Client (former 1E Client) - Content Distribution Service (NomadBranch.exe) prior version 26.1 for Windows allows an adjacent network attacker to tamper with log timestamps via crafted UDP Sync command. This could result in forged or nonsensical datetime prefixes and compromising log integrity and forensic correlation."},{"lang":"es","value":"La falta de validación de un valor controlado por el usuario en el cliente TeamViewer DEX (anteriormente cliente 1E) - Servicio de Distribución de Contenido (NomadBranch.exe) anterior a la versión 26.1 para Windows permite a un atacante de red adyacente manipular las marcas de tiempo de los registros a través de un comando UDP Sync manipulado. Esto podría resultar en prefijos de fecha y hora falsificados o sin sentido y comprometer la integridad de los registros y la correlación forense."}],"metrics":{"cvssMetricV31":[{"source":"psirt@teamviewer.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"ADJACENT_NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"HIGH","availabilityImpact":"NONE"},"exploitabilityScore":2.8,"impactScore":3.6}]},"weaknesses":[{"source":"psirt@teamviewer.com","type":"Secondary","description":[{"lang":"en","value":"CWE-20"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:teamviewer:digital_employee_experience:*:*:*:*:*:*:*:*","versionEndExcluding":"26.1","matchCriteriaId":"8E2A5CE4-D147-45E1-8D16-3257B6E79E70"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*","matchCriteriaId":"A2572D17-1DE6-457B-99CC-64AFD54487EA"}]}]}],"references":[{"url":"https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2026-1001/","source":"psirt@teamviewer.com","tags":["Vendor Advisory"]}]}}]}