CVE-2025-12654

Name of the Vulnerable Software and Affected Versions AnyDesk (affected versions not specified)

Description The issue concerns a remote code execution (RCE) exploit. Technical details include the use of a vxproj file, conversion to vbs and then to ps1 (PowerShell script), and involvement of an asar file. A specific 7z archive named SearchFilter.7z is mentioned, which is downloaded from a release by Rathod536/Fidelity-Power-BI-project. The final asar file has a hash of bcca9de329754c6719b4829919dcb0603f8a5c29a36ab83f9d88a5aa2d00e2d6.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.