Anydesk 6.3.2 for Windows

CPE Details

Anydesk 6.3.2 for Windows
anydesk
anydesk
6.3.2
2021-10-15
10h46 +00:00
2021-10-15
10h50 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:anydesk:anydesk:6.3.2:*:*:*:*:windows:*:*

Informations

Vendor

anydesk

Product

anydesk

Version

6.3.2

Target Software

windows

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-44425 2022-09-12 18h47 +00:00 An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the LAN of an attacker, opened by the Anydesk Windows client when using the tunneling feature, allows the attacker unauthorized access to the local machine's AnyDesk tunneling protocol stack (and also to any remote destination machine software that is listening to the AnyDesk tunneled port).
6.5
Medium
CVE-2021-44426 2022-09-12 18h47 +00:00 An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local ~/Downloads/ directory is possible if the victim is using the AnyDesk Windows client to connect to a remote machine, if an attacker is also connected remotely with AnyDesk to the same remote machine. The upload is done without any approval or action taken by the victim.
8.8
High
CVE-2021-40854 2021-10-14 02h16 +00:00 AnyDesk before 6.2.6 and 6.3.x before 6.3.3 allows a local user to obtain administrator privileges by using the Open Chat Log feature to launch a privileged Notepad process that can launch other applications.
7.8
High