ebrasha/abdal-anydesk-remote-ip-detector

GitHub

github.com

Releases2

Frequency1 day 7 hours

Last Release over 1 year ago

Stars35

CVE-2024-52940 - A zero-day vulnerability in AnyDesk's "Allow Direct Connections" feature, discovered and registered by Ebrahim Shafiei (EbraSha), exposing public and private IP addresses. For details, visit the NVD, Tenable, or MITRE pages.

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-52940 ↗	Nov 18, 2024Monday, 18 November 2024, 05:15	7.5 HIGH	—
AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID.