cvedb.io
CVE-2022-32450
HIGH · CVSS 7.1
EPSS exploitation probability: 0%
Published 2022-07-18T13:15:10.460 · Last modified 2026-06-17T04:47:17.817

Summary

AnyDesk 7.0.9 allows a local user to gain SYSTEM privileges via a symbolic link because the user can write to their own %APPDATA% folder (used for ad.trace and chat) but the product runs as SYSTEM when writing chat-room data there.

Affected products

anydesk — anydesk

Does this affect you?

Add your gear to cvedb and we'll alert you only when anydesk ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.