DLL Preloading Vulnerability in AnyDesk for Windows 7 SP1
CVE-2018-13102

7.8HIGH

Key Information:

Vendor: Anydesk
Status: Anydesk
Vendor: CVE Published:; 3 July 2018

What is CVE-2018-13102?

AnyDesk versions prior to 4.1.3 on Windows 7 SP1 are susceptible to a DLL preloading vulnerability, which can be exploited to execute arbitrary code. This vulnerability arises due to the improper handling of dynamic link libraries when loading application components. Attackers can leverage this flaw to potentially gain unauthorized access to the system, making it imperative for users to upgrade to the latest version for enhanced security.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

https://download.anydesk.com/changelog.txt

x_refsource_CONFIRM

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jul 3, 2018
Vulnerability Reserved
Jul 3, 2018

JSON

Anydesk

What is CVE-2018-13102?

Human OS v1.0: Ageing Is an Unpatched Zero-Day Vulnerability.

References

CVSS V3.1

Timeline

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.