Home

Description

An issue was discovered in AnyDesk before 9.0.0. It has an integer overflow and resultant heap-based buffer overflow via a UDP packet during processing of an Identity user image within the Discovery feature, or when establishing a connection between any two clients.

PUBLISHED Reserved 2025-03-10 | Published 2025-11-06 | Updated 2025-11-06 | Assigner mitre

References

anydesk.com/en/changelog/windows

dspace.cvut.cz/...-Krejsa-Vojtech-DP_Krejsa_Vojtech_2025.pdf

cve.org (CVE-2025-27918)

nvd.nist.gov (CVE-2025-27918)

Download JSON