AnyDesk before 6.1.0 on Windows, when run in portable mode on a system where the attacker has write access to the application directory, allows this attacker to compromise a local user account via a read-only setting for a Trojan horse gcapi.dll file.
References
Link | Resource |
---|---|
https://anydesk.com/cve/2020-35483/ | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2021-01-11T14:33:43
Updated: 2021-01-11T14:33:43
Reserved: 2020-12-17T00:00:00
Link: CVE-2020-35483
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-01-11T15:15:13.187
Modified: 2021-01-20T02:49:26.047
Link: CVE-2020-35483
JSON object: View
Redhat Information
No data.
CWE