Anydesk 6.3.2 for Windows

CPE Details

Anydesk 6.3.2 for Windows
anydesk
anydesk
6.3.2
2021-10-15
10h46 +00:00
2021-10-15
10h50 +00:00
CPE NVD
Alerte pour un CPE
Restez informé de toutes modifications pour un CPE spécifique.
Gestion des notifications

CPE Name: cpe:2.3:a:anydesk:anydesk:6.3.2:*:*:*:*:windows:*:*

Informations

Vendor

anydesk

Product

anydesk

Version

6.3.2

Target Software

windows

Related CVE

Open and find in CVE List

CVE ID Publié Description Score Gravité
CVE-2021-44425 2022-09-12 18h47 +00:00 An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the LAN of an attacker, opened by the Anydesk Windows client when using the tunneling feature, allows the attacker unauthorized access to the local machine's AnyDesk tunneling protocol stack (and also to any remote destination machine software that is listening to the AnyDesk tunneled port).
6.5
Moyen
CVE-2021-44426 2022-09-12 18h47 +00:00 An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.5. An upload of an arbitrary file to a victim's local ~/Downloads/ directory is possible if the victim is using the AnyDesk Windows client to connect to a remote machine, if an attacker is also connected remotely with AnyDesk to the same remote machine. The upload is done without any approval or action taken by the victim.
8.8
Haute
CVE-2021-40854 2021-10-14 02h16 +00:00 AnyDesk before 6.2.6 and 6.3.x before 6.3.3 allows a local user to obtain administrator privileges by using the Open Chat Log feature to launch a privileged Notepad process that can launch other applications.
7.8
Haute