{"vulnerability": "CVE-2024-52940", "sightings": [{"uuid": "c6268384-4c55-46f0-969a-f52aec5a0a56", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://t.me/cvedetector/11279", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-52940 - AnyDesk Public IP Exposre Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-52940 \nPublished : Nov. 18, 2024, 5:15 a.m. | 15\u00a0minutes ago \nDescription : AnyDesk through 8.1.0 on Windows, when Allow Direct Connections is enabled, inadvertently exposes a public IP address within network traffic. The attacker must know the victim's AnyDesk ID. \nSeverity: 0.0 | NA \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"18 Nov 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-11-18T06:30:38.000000Z"}, {"uuid": "5df30793-90da-402b-a8ee-28497fd0184a", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://infosec.exchange/users/cve/statuses/113502252668808044", "content": "", "creation_timestamp": "2024-11-18T05:15:32.395441Z"}, {"uuid": "f9529773-0384-4000-9529-d76879851f57", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://t.me/ics_cert/970", "content": "\u06cc\u06a9 \u0622\u0633\u06cc\u0628\u200c\u067e\u0630\u06cc\u0631\u06cc \u062f\u0631 \u0648\u06cc\u0698\u06af\u06cc Allow Direct Connections \u0646\u0631\u0645\u200c\u0627\u0641\u0632\u0627\u0631 \u0645\u062f\u06cc\u0631\u06cc\u062a \u0648 \u062f\u0633\u062a\u0631\u0633\u06cc \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 AnyDesk \u0628\u0647 \u062f\u0644\u06cc\u0644 \u0627\u0645\u0646\u06cc\u062a \u0646\u0627\u06a9\u0627\u0641\u06cc \u0627\u0639\u062a\u0628\u0627\u0631\u0646\u0627\u0645\u0647\u200c\u0647\u0627 \u0627\u0633\u062a. \u0628\u0647\u0631\u0647 \u0628\u0631\u062f\u0627\u0631\u06cc \u0627\u0632 \u0627\u06cc\u0646 \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631\u06cc \u0645\u06cc \u062a\u0648\u0627\u0646\u062f \u0628\u0647 \u0645\u0647\u0627\u062c\u0645 \u0627\u0632 \u0631\u0627\u0647 \u062f\u0648\u0631 \u0627\u062c\u0627\u0632\u0647 \u062f\u0647\u062f \u062a\u0627 \u0627\u0637\u0644\u0627\u0639\u0627\u062a \u0645\u062d\u0627\u0641\u0638\u062a \u0634\u062f\u0647 \u0645\u0631\u0628\u0648\u0637 \u0628\u0647 \u0622\u062f\u0631\u0633 IP \u0633\u06cc\u0633\u062a\u0645 \u0647\u062f\u0641 \u0631\u0627 \u0627\u0641\u0634\u0627 \u06a9\u0646\u062f.\n\nBDU: 2024-10229\nCVE-2024-52940\n\n\u0646\u0635\u0628 \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0627\u0632 \u0645\u0646\u0627\u0628\u0639 \u0642\u0627\u0628\u0644 \u0627\u0639\u062a\u0645\u0627\u062f\n \u062a\u0648\u0635\u06cc\u0647 \u0645\u06cc \u0634\u0648\u062f \u0628\u0647 \u0631\u0648\u0632 \u0631\u0633\u0627\u0646\u06cc \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631 \u0631\u0627 \u062a\u0646\u0647\u0627 \u067e\u0633 \u0627\u0632 \u0627\u0631\u0632\u06cc\u0627\u0628\u06cc \u062a\u0645\u0627\u0645 \u062e\u0637\u0631\u0627\u062a \u0645\u0631\u062a\u0628\u0637 \u0646\u0635\u0628 \u06a9\u0646\u06cc\u062f.\n\n\u0627\u0642\u062f\u0627\u0645\u0627\u062a \u062c\u0628\u0631\u0627\u0646\u06cc:\n- \u0645\u062d\u062f\u0648\u062f\u06cc\u062a \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0639\u0645\u0644\u06a9\u0631\u062f Allow Direct Connections \u0628\u0631\u0627\u06cc \u0633\u0627\u0632\u0645\u0627\u0646\u062f\u0647\u06cc \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u0634\u0628\u06a9\u0647\u061b\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u06cc\u06a9 \u067e\u0648\u0631\u062a \u063a\u06cc\u0631 \u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f (\u0627\u0633\u062a\u0627\u0646\u062f\u0627\u0631\u062f - 7070) \u0628\u0631\u0627\u06cc \u0633\u0627\u0632\u0645\u0627\u0646\u062f\u0647\u06cc \u0627\u062a\u0635\u0627\u0644\u0627\u062a \u0634\u0628\u06a9\u0647.\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0627\u0628\u0632\u0627\u0631\u0647\u0627\u06cc \u0641\u0627\u06cc\u0631\u0648\u0627\u0644 \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631.\n- \u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u0644\u06cc\u0633\u062a \u0633\u0641\u06cc\u062f \u0622\u062f\u0631\u0633 \u0647\u0627\u06cc IP \u0628\u0631\u0627\u06cc \u0645\u062d\u062f\u0648\u062f \u06a9\u0631\u062f\u0646 \u062f\u0633\u062a\u0631\u0633\u06cc \u0628\u0647 \u0646\u0631\u0645 \u0627\u0641\u0632\u0627\u0631\u0647\u0627\u06cc \u0622\u0633\u06cc\u0628 \u067e\u0630\u06cc\u0631.\n\n\u0627\u0633\u062a\u0641\u0627\u062f\u0647 \u0627\u0632 \u062a\u0648\u0635\u06cc\u0647 \u0647\u0627:\nhttps://download.anydesk.com/changelog.txt\n\u26a0\ufe0f\u0628\u06cc\u0627\u0646\u06cc\u0647 \u0633\u0644\u0628 \u0645\u0633\u0626\u0648\u0644\u06cc\u062a\n\ud83c\udfed\u0648\u0628\u0633\u0627\u06cc\u062a \u0648 \u06a9\u0627\u0646\u0627\u0644 \u062a\u062e\u0635\u0635\u06cc \u0627\u0645\u0646\u06cc\u062a \u0632\u06cc\u0631\u0633\u0627\u062e\u062a\u0647\u0627\u06cc \u0627\u062a\u0648\u0645\u0627\u0633\u06cc\u0648\u0646 \u0648 \u06a9\u0646\u062a\u0631\u0644 \u0635\u0646\u0639\u062a\u06cc\n\ud83d\udc6e\ud83c\udffd\u200d\u2640\ufe0f\u0647\u0631\u06af\u0648\u0646\u0647 \u0627\u0646\u062a\u0634\u0627\u0631 \u0648 \u0630\u06a9\u0631 \u0645\u0637\u0627\u0644\u0628 \u0628\u062f\u0648\u0646 \u0630\u06a9\u0631 \u062f\u0642\u06cc\u0642 \u0645\u0646\u0628\u0639 \u0648 \u0622\u062f\u0631\u0633 \u0644\u06cc\u0646\u06a9 \u0622\u0646 \u0645\u0645\u0646\u0648\u0639 \u0627\u0633\u062a. \n\u0627\u062f\u0645\u06cc\u0646:\n\u200fhttps://t.me/pedram_kiani\n\u06a9\u0627\u0646\u0627\u0644 \u062a\u0644\u06af\u0631\u0627\u0645:\nhttps://t.me/ics_cert\n\u06af\u0631\u0648\u0647 \u0648\u0627\u062a\u0633 \u0622\u067e :\nhttps://chat.whatsapp.com/FpB620AWEeSKvd8U6cFh33", "creation_timestamp": "2024-11-30T08:14:34.000000Z"}, {"uuid": "ffe5ca02-7e5a-4a21-9232-d41916be4f63", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "cve-2024-52940", "type": "seen", "source": "https://infosec.exchange/users/DarkWebInformer/statuses/113505483762832722", "content": "", "creation_timestamp": "2024-11-18T18:57:14.632199Z"}, {"uuid": "0e98bc4b-b400-4ac4-b18e-a6c7be548dd0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/TheDarkWebInformer/7551", "content": "\ud83d\udca1AnyDesk IP Leak Vulnerability CVE-2024-52940\n\nhttps://darkwebinformer.com/anydesk-ip-leak-vulnerability-cve-2024-52940/", "creation_timestamp": "2024-11-19T00:18:21.000000Z"}, {"uuid": "0db5f19c-f56d-4fa7-8829-b0787cb89507", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "seen", "source": "https://t.me/six5zeroexploit/86", "content": "Attention AnyDesk Users! A critical security flaw (CVE-2024-52940) has been discovered, exposing user IP addresses and leaving networks vulnerable to attacks -patch your systems immediately and secure your organization", "creation_timestamp": "2024-11-27T10:26:27.000000Z"}, {"uuid": "51ee0832-9731-4a46-927a-ea0e9559a4aa", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/738", "content": "AnyDesk IP Leak Vulnerability CVE-2024-52940\n\nhttps://github.com/ebrasha/abdal-anydesk-remote-ip-detector", "creation_timestamp": "2024-11-22T10:05:08.000000Z"}, {"uuid": "c56901e3-a2a6-41f4-b074-1b9c23d6c1d0", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/DEVIL_La_RSx/1576", "content": "AnyDesk IP Leak Vulnerability CVE-2024-52940\n\nhttps://github.com/ebrasha/abdal-anydesk-remote-ip-detector", "creation_timestamp": "2024-12-02T01:56:48.000000Z"}, {"uuid": "d1f07993-f60e-4a69-8c56-582e4e5f69c9", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-52940", "type": "published-proof-of-concept", "source": "https://t.me/GithubRedTeam/9290", "content": "GitHub\u76d1\u63a7\u6d88\u606f\u63d0\u9192\uff01\uff01\uff01 \n\n\u66f4\u65b0\u4e86\uff1aCVE-2024\n\u63cf\u8ff0\uff1aAnySniff is a tool for monitoring TCP connections of processes like AnyDesk on Windows. It uses the CVE-2024-52940 vulnerability to track open connections and log IPs, ports, and other details.\nURL\uff1ahttps://github.com/MKultra6969/AnySniff\n\n\u6807\u7b7e\uff1a#CVE-2024", "creation_timestamp": "2024-12-02T05:19:16.000000Z"}]}