216.73.217.98

CVE-2025-27916

· Published 06/11/2025 18:15 · Modified 08/12/2025 17:16

Labels: CVE-2025-27916 2025-11-06CVE-2025-27916CWE-290[email protected]

Essential information

Published
06/11/2025 18:15
Modified
08/12/2025 17:16
Author
Creator
CVSS
7.5 HIGH (v3.1)
CISA KEV
No
CWE
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N

CVSS metrics

Description

An issue was discovered in AnyDesk for Windows before 9.0.6 and AnyDesk for Android before 8.0.0. When the connection between two clients is established via an IP address, it is possible to manipulate the data and spoof the AnyDesk ID.

NVD status

Status
Modified — CVE has been amended by a source (CVE Primary CNA or another CNA). Analysis data supplied by the NVD may be no longer be accurate due to these changes.
Source
[email protected]
NVD
View on NVD

Affected products (CPE)

ProductCPE
anydesk / anydesk cpe:2.3:a:anydesk:anydesk:*:*:*:*:*:windows:*:*

References