Denial-of-Service Vulnerability in AnyDesk Screen Recording Feature
CVE-2026-15681

4.7MEDIUM

Key Information:

Vendor

Anydesk

Status
Vendor
CVE Published:
13 July 2026

What is CVE-2026-15681?

A vulnerability exists in AnyDesk's handling of screen recording files, enabling local attackers to exploit the system by creating a junction point. This exploitation allows attackers to generate arbitrary files, leading to a Denial-of-Service condition for affected installations. For successful exploitation, the attacker must have the capability to execute low-privileged code on the target system.

Affected Version(s)

AnyDesk 9.0.4

References

CVSS V3.0

Score:
4.7
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Local
Attack Complexity:
High
Privileges Required:
Low
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.