CVE-2025-27918

CVSS v3.1

Critical

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions AnyDesk versions prior to 9.0.0

Description An issue exists where an integer overflow can lead to a heap-based buffer overflow. This occurs through the processing of a UDP packet, specifically during the handling of an Identity user image within the Discovery feature, or when a connection is established between AnyDesk clients.

Recommendations Update to AnyDesk version 9.0.0 or later.

Exploit

Fix

Integer Overflow

Heap Based Buffer Overflow

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-190CWE-122

Related Identifiers

BDU:2025-13991

CVE-2025-27918

Affected Products

Anydesk

CVE-2025-27918

Weakness Enumeration

Related Identifiers

Affected Products

References · 8