๐Ÿ” CVE Alert

CVE-2026-15682

MEDIUM 4.7

AnyDesk Support Information Link Following Denial-of-Service Vulnerability

CVSS Score
4.7
EPSS Score
0.0%
EPSS Percentile
0th

AnyDesk Support Information Link Following Denial-of-Service Vulnerability. This vulnerability allows local attackers to create a denial-of-service condition on affected installations of AnyDesk. An attacker must first obtain the ability to execute low-privileged code on the target system in order to exploit this vulnerability. The specific flaw exists within the Send Support Information feature. By creating a junction, an attacker can abuse the service to create arbitrary files. An attacker can leverage this vulnerability to create a denial-of-service condition on the system. Was ZDI-CAN-26645.

CWE CWE-59
Vendor anydesk
Product anydesk
Published Jul 13, 2026
Last Updated Jul 14, 2026
Stay Ahead of the Next One

Get instant alerts for anydesk anydesk

Be the first to know when new medium vulnerabilities affecting anydesk anydesk are published โ€” delivered to Slack, Telegram or Discord.

Get Free Alerts โ†’ Free ยท No credit card ยท 60 sec setup

CVSS v3 Breakdown

CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H

Affected Versions

AnyDesk / AnyDesk
9.0.4

References

NVD โ†— CVE.org โ†— EPSS Data โ†—
zerodayinitiative.com: https://www.zerodayinitiative.com/advisories/ZDI-26-401/