Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco secure client vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2012-1370
Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 allows remote authenticated users to cause a denial of service (vpnagentd process crash) via a crafted packet, aka Bug ID CSCty01670.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.0629
Cisco Anyconnect Secure Mobility Client 3.0.07059
5.8
CVSSv2
CVE-2012-2499
The IPsec implementation in Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 does not verify the certificate name in an X.509 certificate, which allows man-in-the-middle malicious users to spoof servers via a crafted certificate, aka Bug ID CSCtz26985.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.07059
Cisco Anyconnect Secure Mobility Client 3.0.0629
4
CVSSv2
CVE-2012-2500
Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 does not verify the certificate name in an X.509 certificate during WebLaunch of IPsec, which allows man-in-the-middle malicious users to spoof servers via a crafted certificate, aka Bug ID CSCtz29470.
Cisco Anyconnect Secure Mobility Client 3.0.0629
Cisco Anyconnect Secure Mobility Client 3.0.07059
Cisco Anyconnect Secure Mobility Client 3.0
9.3
CVSSv2
CVE-2012-3088
Cisco AnyConnect Secure Mobility Client 3.1.x prior to 3.1.00495, and 3.2.x, does not check whether an HTTP request originally contains ScanSafe headers, which allows remote malicious users to have an unspecified impact via a crafted request, aka Bug ID CSCua13166.
Cisco Anyconnect Secure Mobility Client 3.1.0
Cisco Anyconnect Secure Mobility Client 3.2.0
7.2
CVSSv2
CVE-2015-0761
Cisco AnyConnect Secure Mobility Client prior to 3.1(8009) and 4.x prior to 4.0(2052) on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790.
Cisco Anyconnect Secure Mobility Client
Cisco Anyconnect Secure Mobility Client 4.0\\(.00051\\)
Cisco Anyconnect Secure Mobility Client 4.0\\(.00048\\)
NA
CVE-2023-36672
An issue exists in the Clario VPN client up to and including 5.9.1.1662 for macOS. The VPN client insecurely configures the operating system such that traffic to the local network is sent in plaintext outside the VPN tunnel even if the local network is using a non-RFC1918 IP subn...
Clario Vpn
2 Articles
NA
CVE-2023-36673
An issue exists in Avira Phantom VPN up to and including 2.23.1 for macOS. The VPN client insecurely configures the operating system such that all IP traffic to the VPN server's IP address is sent in plaintext outside the VPN tunnel, even if this traffic is not generated by ...
Avira Phantom Vpn
2 Articles
NA
CVE-2023-20178
A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows could allow a low-privileged, authenticated, local malicious user to elevate privileges to those of SYSTEM. The client update ...
Cisco Secure Client
Cisco Anyconnect Secure Mobility Client
2 Github repositories
4.3
CVSSv2
CVE-2017-6788
The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains a vulnerability that could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the affected software. The vulnerability is due to ...
Cisco Anyconnect Secure Mobility Client 4.4\\(4027\\)
Cisco Anyconnect Secure Mobility Client 4.5\\(58\\)
6.8
CVSSv2
CVE-2007-1064
Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client do not drop privileges when the help facility in the supplicant GUI is invok...
Cisco Secure Services Client 4.0
Cisco Trust Agent 2.1
Meetinghouse Aegis Secureconnect Client Windows Platform
Cisco Security Agent 5.0
Cisco Security Agent 5.1
Cisco Trust Agent 1.0
Cisco Secure Services Client 4.0.5
Cisco Secure Services Client 4.0.51
Cisco Trust Agent 2.0
Cisco Trust Agent 2.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »