Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco anyconnect secure mobility client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-2499
The IPsec implementation in Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 does not verify the certificate name in an X.509 certificate, which allows man-in-the-middle malicious users to spoof servers via a crafted certificate, aka Bug ID CSCtz26985.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.07059
Cisco Anyconnect Secure Mobility Client 3.0.0629
NA
CVE-2012-3088
Cisco AnyConnect Secure Mobility Client 3.1.x prior to 3.1.00495, and 3.2.x, does not check whether an HTTP request originally contains ScanSafe headers, which allows remote malicious users to have an unspecified impact via a crafted request, aka Bug ID CSCua13166.
Cisco Anyconnect Secure Mobility Client 3.1.0
Cisco Anyconnect Secure Mobility Client 3.2.0
NA
CVE-2015-0761
Cisco AnyConnect Secure Mobility Client prior to 3.1(8009) and 4.x prior to 4.0(2052) on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790.
Cisco Anyconnect Secure Mobility Client
Cisco Anyconnect Secure Mobility Client 4.0\\(.00051\\)
Cisco Anyconnect Secure Mobility Client 4.0\\(.00048\\)
6.1
CVSSv3
CVE-2017-6788
The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains a vulnerability that could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the affected software. The vulnerability is due to ...
Cisco Anyconnect Secure Mobility Client 4.4\\(4027\\)
Cisco Anyconnect Secure Mobility Client 4.5\\(58\\)
5.5
CVSSv3
CVE-2023-20240
Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory re...
Cisco Anyconnect Secure Mobility Client 4.9.00086
Cisco Anyconnect Secure Mobility Client 4.9.01095
Cisco Anyconnect Secure Mobility Client 4.9.02028
Cisco Anyconnect Secure Mobility Client 4.9.03047
Cisco Anyconnect Secure Mobility Client 4.9.03049
Cisco Anyconnect Secure Mobility Client 4.9.04043
Cisco Anyconnect Secure Mobility Client 4.9.04053
Cisco Anyconnect Secure Mobility Client 4.9.05042
Cisco Anyconnect Secure Mobility Client 4.9.06037
Cisco Secure Client 4.10.00093
Cisco Secure Client 4.10.01075
Cisco Secure Client 4.10.02086
Cisco Secure Client 4.10.03104
Cisco Secure Client 4.10.04065
Cisco Secure Client 4.10.04071
Cisco Secure Client 4.10.05085
Cisco Secure Client 4.10.05095
Cisco Secure Client 4.10.05111
Cisco Secure Client 4.10.06079
Cisco Secure Client 4.10.06090
Cisco Secure Client 4.10.07061
Cisco Secure Client 4.10.07062
5.5
CVSSv3
CVE-2023-20241
Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory re...
Cisco Anyconnect Secure Mobility Client 4.9.00086
Cisco Anyconnect Secure Mobility Client 4.9.01095
Cisco Anyconnect Secure Mobility Client 4.9.02028
Cisco Anyconnect Secure Mobility Client 4.9.03047
Cisco Anyconnect Secure Mobility Client 4.9.03049
Cisco Anyconnect Secure Mobility Client 4.9.04043
Cisco Anyconnect Secure Mobility Client 4.9.04053
Cisco Anyconnect Secure Mobility Client 4.9.05042
Cisco Anyconnect Secure Mobility Client 4.9.06037
Cisco Secure Client 4.10.00093
Cisco Secure Client 4.10.01075
Cisco Secure Client 4.10.02086
Cisco Secure Client 4.10.03104
Cisco Secure Client 4.10.04065
Cisco Secure Client 4.10.04071
Cisco Secure Client 4.10.05085
Cisco Secure Client 4.10.05095
Cisco Secure Client 4.10.05111
Cisco Secure Client 4.10.06079
Cisco Secure Client 4.10.06090
Cisco Secure Client 4.10.07061
Cisco Secure Client 4.10.07062
NA
CVE-2012-2494
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x prior to 2.5 MR6 and 3.x prior to 3.0 MR8 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to fo...
Cisco Anyconnect Secure Mobility Client 2.1
Cisco Anyconnect Secure Mobility Client 2.3.185
Cisco Anyconnect Secure Mobility Client 2.3.254
Cisco Anyconnect Secure Mobility Client 2.4.0202
Cisco Anyconnect Secure Mobility Client 2.4.1012
Cisco Anyconnect Secure Mobility Client 2.5
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 2.2.128
Cisco Anyconnect Secure Mobility Client 2.2.133
Cisco Anyconnect Secure Mobility Client 2.2.136
Cisco Anyconnect Secure Mobility Client 2.2.140
Cisco Anyconnect Secure Mobility Client 2.3
Cisco Anyconnect Secure Mobility Client 2.0
Cisco Anyconnect Secure Mobility Client 2.2
Cisco Anyconnect Secure Mobility Client 2.3.2016
Cisco Anyconnect Secure Mobility Client 2.4
NA
CVE-2015-0662
Cisco AnyConnect Secure Mobility Client 4.0(.00051) and previous versions allows local users to gain privileges via crafted IPC messages that trigger use of root privileges for a software-package installation, aka Bug ID CSCus79385.
Cisco Anyconnect Secure Mobility Client
NA
CVE-2015-0663
Cisco AnyConnect Secure Mobility Client 4.0(.00051) and previous versions does not properly implement access control for IPC messages, which allows local users to write to arbitrary files via crafted messages, aka Bug ID CSCus79392.
Cisco Anyconnect Secure Mobility Client
NA
CVE-2015-0664
The IPC channel in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and previous versions allows local users to write to arbitrary userspace memory locations, and consequently gain privileges, via crafted messages, aka Bug ID CSCus79195.
Cisco Anyconnect Secure Mobility Client
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
IMAP
CVE-2024-4367
server-side request forgery
information disclosure
CVE-2024-34342
CVE-2024-4281
CVE-2024-3507
CVE-2024-25560
CVE-2024-34574
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »