ThreatCluster

AnyDesk Zero-Day CVE-2026-15682 Allows Local Denial-of-Service Attacks

First seen 17 Jul 2026, 10:24 UTC CybersecuritynewsGbhackers 86% similarity 71

Article Content

Browse articles
ThreatCluster

A zero-day vulnerability in AnyDesk, tracked as CVE-2026-15682, was disclosed on July 13, 2026. This flaw allows local attackers to exploit the 'Send Support Information' feature to trigger a denial-of-service condition. Organizations using AnyDesk for remote access and IT support are at risk. The vulnerability was reported by Trend Micro’s Zero Day Initiative on July 8, 2026. Security teams are advised to monitor for potential exploitation. The flaw affects all versions of AnyDesk that utilize this feature. Immediate action is recommended to mitigate risks associated with this vulnerability.

Key Points: • CVE-2026-15682 allows local attackers to crash AnyDesk installations. • The vulnerability resides in the 'Send Support Information' feature. • Organizations using AnyDesk for remote access are particularly vulnerable.

ThreatCluster AI

Timeline

2026-07-08
Vulnerability disclosed by Trend Micro
Trend Micro's Zero Day Initiative published an advisory about the AnyDesk zero-day flaw.
Gbhackers
2026-07-13
CVE-2026-15682 published
The zero-day vulnerability in AnyDesk was officially assigned the CVE identifier CVE-2026-15682.
Gbhackers
2026-07-16
Cybersecuritynews reports on vulnerability
Cybersecuritynews highlighted the risk posed by the AnyDesk zero-day vulnerability to organizations.
Cybersecuritynews

Community

Browse all →