AnyDesk Zero-Day CVE-2026-15682 Allows Local Denial-of-Service Attacks
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
A zero-day vulnerability in AnyDesk, tracked as CVE-2026-15682, was disclosed on July 13, 2026. This flaw allows local attackers to exploit the 'Send Support Information' feature to trigger a denial-of-service condition. Organizations using AnyDesk for remote access and IT support are at risk. The vulnerability was reported by Trend Micro’s Zero Day Initiative on July 8, 2026. Security teams are advised to monitor for potential exploitation. The flaw affects all versions of AnyDesk that utilize this feature. Immediate action is recommended to mitigate risks associated with this vulnerability.
Key Points: • CVE-2026-15682 allows local attackers to crash AnyDesk installations. • The vulnerability resides in the 'Send Support Information' feature. • Organizations using AnyDesk for remote access are particularly vulnerable.