Security Advisory

CVE-2022-32450

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-07-18 12:17:12

Last updated 2024-08-03 07:39:51

Assigner mitre

State PUBLISHED

Description

AnyDesk 7.0.9 allows a local user to gain SYSTEM privileges via a symbolic link because the user can write to their own %APPDATA% folder (used for ad.trace and chat) but the product runs as SYSTEM when writing chat-room data there.

← Browse all CVEs View on cve.org ↗