Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anydesk anydesk vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-26509
AnyDesk 7.0.8 allows remote Denial of Service.
Anydesk Anydesk 7.0.8
6.5
CVSSv3
CVE-2021-44425
An issue exists in AnyDesk prior to 6.2.6 and 6.3.x prior to 6.3.3. An unnecessarily open listening port on a machine in the LAN of an attacker, opened by the Anydesk Windows client when using the tunneling feature, allows the attacker unauthorized access to the local machine...
Anydesk Anydesk
8.8
CVSSv3
CVE-2021-44426
An issue exists in AnyDesk prior to 6.2.6 and 6.3.x prior to 6.3.5. An upload of an arbitrary file to a victim's local ~/Downloads/ directory is possible if the victim is using the AnyDesk Windows client to connect to a remote machine, if an attacker is also connected remote...
Anydesk Anydesk
7.1
CVSSv3
CVE-2022-32450
AnyDesk 7.0.9 allows a local user to gain SYSTEM privileges via a symbolic link because the user can write to their own %APPDATA% folder (used for ad.trace and chat) but the product runs as SYSTEM when writing chat-room data there.
Anydesk Anydesk 7.0.9
7.8
CVSSv3
CVE-2021-40854
AnyDesk prior to 6.2.6 and 6.3.x prior to 6.3.3 allows a local user to obtain administrator privileges by using the Open Chat Log feature to launch a privileged Notepad process that can launch other applications.
Anydesk Anydesk
7.8
CVSSv3
CVE-2020-35483
AnyDesk prior to 6.1.0 on Windows, when run in portable mode on a system where the attacker has write access to the application directory, allows this malicious user to compromise a local user account via a read-only setting for a Trojan horse gcapi.dll file.
Anydesk Anydesk
7.8
CVSSv3
CVE-2020-27614
AnyDesk for macOS versions 6.0.2 and older have a vulnerability in the XPC interface that does not properly validate client requests and allows local privilege escalation.
Anydesk Anydesk
9.8
CVSSv3
CVE-2020-13160
AnyDesk prior to 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited for remote code execution.
Anydesk Anydesk
1 Metasploit module
7.8
CVSSv3
CVE-2018-13102
AnyDesk before "12.06.2018 - 4.1.3" on Windows 7 SP1 has a DLL preloading vulnerability.
Anydesk Anydesk
9.8
CVSSv3
CVE-2017-14397
AnyDesk prior to 3.6.1 on Windows has a DLL injection vulnerability.
Anydesk Anydesk
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started