Описание
AnyDesk 7.0.15 and 9.0.1 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted service path configuration to inject malicious executables that will be run with high-level system permissions.
EPSS
Процентиль: 24%
0.0008
Низкий
Дефекты
CWE-428
Связанные уязвимости
github
около 2 месяцев назад
AnyDesk 7.0.15 and 9.0.1 contains an unquoted service path vulnerability that allows local non-privileged users to potentially execute code with elevated SYSTEM privileges. Attackers can exploit the unquoted service path configuration to inject malicious executables that will be run with high-level system permissions.
EPSS
Процентиль: 24%
0.0008
Низкий
Дефекты
CWE-428