CVE-2026-15682
AnyDesk Support Information Link Following Denial-of-Service Vulnerability
CVSS Score
4.7
EPSS Score
0.0%
EPSS Percentile
0th
AnyDesk Support Information Link Following Denial-of-Service Vulnerability. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Send Support Information feature. By creating a junction, an attacker can abuse the service to create arbitrary files. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-26645.
| CWE | CWE-59 |
| Vendor | anydesk |
| Product | anydesk |
| Published | Jul 13, 2026 |
| Last Updated | Jul 14, 2026 |
Stay Ahead of the Next One
Get instant alerts for anydesk anydesk
Be the first to know when new medium vulnerabilities affecting anydesk anydesk are published โ delivered to Slack, Telegram or Discord.
Get Free Alerts โ
Free ยท No credit card ยท 60 sec setup
CVSS v3 Breakdown
CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H Affected Versions
AnyDesk / AnyDesk
9.0.4