CNNVD-202512-2042 Information

CNNVD ID

CNNVD-202512-2042

Related CVE

CVE-2025-34499

• CNNVD Published: 2025-12-11

Description (Chinese)

AnyDesk是德国AnyDesk公司的一款远程桌面连接软件。 AnyDesk 7.0.15版本和9.0.1版本存在代码问题漏洞，该漏洞源于未加引号的服务路径，可能导致本地非特权用户以SYSTEM权限执行代码。

Description (English)

AnyDesk is a remote desktop connection software for AnyDesk, Germany. There is a code gap between AnyDesk version 7.0.15 and version 9.01, which stems from unquoted service paths and may lead to local non-privileged users executing codes with SYSTEM privileges.

Hazard Level

High

Vulnerability Type

代码问题

Affected Vendor

AnyDesk

Published

2025-12-11

Last Modified

2026-02-24

References

http://anydesk.com http://anydesk.com/download https://www.exploit-db.com/exploits/51968 https://www.exploit-db.com/exploits/52258 https://www.vulncheck.com/advisories/anydesk-unquoted-service-path-privilege-escalation-vulnerability

Patch

https://anydesk.com/en/downloads/windows