ZDI-CAN-26591 MEDIUM 4.7 Overdue Mar 25, 2025

AnyDesk

AnyDesk, a remote desktop software company, has a medium-severity denial of service vulnerability that requires local access and low-level user privileges to exploit. The flaw causes system unavailability but does not compromise confidentiality or integrity of data. Security teams should monitor for patches following the July 23, 2025 vendor deadline and restrict local access privileges on systems running AnyDesk until an update is available.

Advisory Details
Researcher Discovered by: Giuliano Sanfins from SiDi
Reported March 25, 2025
Deadline July 23, 2025 267d overdue
CVSS Vector AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Tags

Windows Linux macOS Potential Denial of Service

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy