CVE-2024-52940
Severity CVSS v4.0:
Pending analysis
Type:
CWE-532
Information Exposure Through Log Files
Publication date:
18/11/2024
Last modified:
18/11/2024
Description
AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID.
Impact
Base Score 3.x
7.50
Severity 3.x
HIGH