Home/Product/anydesk
Product

anydesk

16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2019-25261
all versions
AnyDesk 5.4.0 contains an unquoted service path vulnerability in its Windows service configuration that allows local attackers to
7.8HIGH
 CVE-2025-27919
<= 9.0.4
An issue was discovered in AnyDesk through 9.0.4. A remotely connected user with the "Control my device" permission can manipulate
8.2HIGH
 CVE-2025-27918
< 9.0.0
An issue was discovered in AnyDesk for Windows before 9.0.5, AnyDesk for macOS before 9.0.1, AnyDesk for Linux before 7.0.0, AnyDe
9.8CRITICAL
 CVE-2025-27917
<= 9.0.4
An issue was discovered in AnyDesk for Windows before 9.0.5, AnyDesk for macOS before 9.0.1, AnyDesk for Linux before 7.0.0, AnyDe
7.5HIGH
 CVE-2025-27916
<= 9.0.4
An issue was discovered in AnyDesk for Windows before 9.0.6 and AnyDesk for Android before 8.0.0. When the connection between two
7.5HIGH
 CVE-2024-12754
all versions
AnyDesk Link Following Information Disclosure Vulnerability. This vulnerability allows local attackers to disclose sensitive infor
5.5MEDIUM
 CVE-2023-26509
all versions
AnyDesk 7.0.8 allows remote Denial of Service.
7.5HIGH
 CVE-2021-44426
< 6.2.6
An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local ~/Downl
8.8HIGH
 CVE-2021-44425
< 6.2.6
An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the L
6.5MEDIUM
 CVE-2022-32450
all versions
AnyDesk 7.0.9 allows a local user to gain SYSTEM privileges via a symbolic link because the user can write to their own %APPDATA%
7.1HIGH
 CVE-2021-40854
>= 3.1.0 and < 6.2.6
AnyDesk before 6.2.6 and 6.3.x before 6.3.3 allows a local user to obtain administrator privileges by using the Open Chat Log feat
7.8HIGH
 CVE-2020-35483
>= 5.4.2 and < 6.1.0
AnyDesk before 6.1.0 on Windows, when run in portable mode on a system where the attacker has write access to the application dire
7.8HIGH
 CVE-2020-27614
<= 6.0.2
AnyDesk for macOS versions 6.0.2 and older have a vulnerability in the XPC interface that does not properly validate client reques
7.8HIGH
 CVE-2020-13160
< 5.5.3
AnyDesk before 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited for remote code execution.
9.8CRITICAL
 CVE-2018-13102
< 4.1.3
AnyDesk before "12.06.2018 - 4.1.3" on Windows 7 SP1 has a DLL preloading vulnerability.
7.8HIGH
 CVE-2017-14397
<= 3.6.0
AnyDesk before 3.6.1 on Windows has a DLL injection vulnerability.
9.8CRITICAL
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh