CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2025-64992

A command injection vulnerability was discovered in TeamViewer DEX (former 1E DEX), specifically within the 1E-Nomad-PauseNomadJobQueue instruction prior V25. Improper input validation, allowing authenticated attackers with Actioner privileges to inject arbitrary commands. Exploitation enables remote execution of elevated commands on devices connected to the platform.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 31.2%

CVSS Severity

CVSS v3 Score 6.8

References

https://www.teamviewer.com/en/resources/trust-center/security-bulletins/tv-2025-1006/

Products affected by CVE-2025-64992

Teamviewer » Digital Employee Experience » Version: Any

cpe:2.3:a:teamviewer:digital_employee_experience:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2025-64992

Products

Pricing

Contact Us