High severity7.5NVD Advisory· Published Nov 18, 2024· Updated Apr 15, 2026

CVE-2024-52940

Description

AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

download.anydesk.com/changelog.txtnvd
x.com/ProfShafiei/status/1850856458017009830nvd

News mentions

No linked articles in our index yet.

cvss	0.488
epss	0.016
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000