Anydesk Anydesk 6.0.8 for Windows

CPE Details

Anydesk Anydesk 6.0.8 for Windows
anydesk
anydesk
6.0.8
2021-01-19
19h12 +00:00
2021-01-19
19h12 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:anydesk:anydesk:6.0.8:*:*:*:*:windows:*:*

Informations

Vendor

anydesk

Product

anydesk

Version

6.0.8

Target Software

windows

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-44425 2022-09-12 18h47 +00:00 An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the LAN of an attacker, opened by the Anydesk Windows client when using the tunneling feature, allows the attacker unauthorized access to the local machine's AnyDesk tunneling protocol stack (and also to any remote destination machine software that is listening to the AnyDesk tunneled port).
6.5
Medium
CVE-2021-44426 2022-09-12 18h47 +00:00 An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local ~/Downloads/ directory is possible if the victim is using the AnyDesk Windows client to connect to a remote machine, if an attacker is also connected remotely with AnyDesk to the same remote machine. The upload is done without any approval or action taken by the victim.
8.8
High
CVE-2021-40854 2021-10-14 02h16 +00:00 AnyDesk before 6.2.6 and 6.3.x before 6.3.3 allows a local user to obtain administrator privileges by using the Open Chat Log feature to launch a privileged Notepad process that can launch other applications.
7.8
High
CVE-2020-35483 2021-01-11 13h33 +00:00 AnyDesk before 6.1.0 on Windows, when run in portable mode on a system where the attacker has write access to the application directory, allows this attacker to compromise a local user account via a read-only setting for a Trojan horse gcapi.dll file.
7.8
High