virus logo FortiClient Vulnerability

Unauthorized Access Vulnerability CVE-2021-44425 for AnyDesk

description-logoDescription

An issue was discovered in AnyDesk before 6.2.6 and 6.3.x before 6.3.3. An unnecessarily open listening port on a machine in the LAN of an attacker, opened by the Anydesk Windows client when using the tunneling feature, allows the attacker unauthorized access to the local machine's AnyDesk tunneling protocol stack (and also to any remote destination machine software that is listening to the AnyDesk tunneled port).

affected-products-logoAffected Applications

AnyDesk

CVE References

CVE-2021-44425

Other References

https://argus-sec.com/discovering-tunneling-service-security-flaws-in-anydesk-remote-application/
ID 4534
Created Sep 28, 2022
Description
Updated		 Sep 28, 2022
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon
Coverage FortiClient
OS Windows
Vendor AnyDesk
Patch manual
Application AnyDesk