Anydesk: >> Anydesk Security Vulnerabilities
AnyDesk before 6.2.6 and 6.3.x before 6.3.3 allows a local user to obtain administrator privileges by using the Open Chat Log feature to launch a privileged Notepad process that can launch other applications.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-10-14
AnyDesk before 6.1.0 on Windows, when run in portable mode on a system where the attacker has write access to the application directory, allows this attacker to compromise a local user account via a read-only setting for a Trojan horse gcapi.dll file.
CVSS Score
7.8
EPSS Score
0.001
Published
2021-01-11
AnyDesk for macOS versions 6.0.2 and older have a vulnerability in the XPC interface that does not properly validate client requests and allows local privilege escalation.
CVSS Score
7.8
EPSS Score
0.0
Published
2020-12-09
AnyDesk before 5.5.3 on Linux and FreeBSD has a format string vulnerability that can be exploited for remote code execution.
CVSS Score
9.8
EPSS Score
0.824
Published
2020-06-09
AnyDesk before "12.06.2018 - 4.1.3" on Windows 7 SP1 has a DLL preloading vulnerability.
CVSS Score
7.8
EPSS Score
0.003
Published
2018-07-03
AnyDesk before 3.6.1 on Windows has a DLL injection vulnerability.
CVSS Score
9.8
EPSS Score
0.005
Published
2017-09-12
Page 2