Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco secure client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-3314
Cisco AnyConnect on Android and OS X does not properly verify the host type, which allows remote malicious users to spoof authentication forms and possibly capture credentials via unspecified vectors, aka Bug IDs CSCuo24931 and CSCuo24940.
Cisco Anyconnect Secure Mobility Client
7.8
CVSSv3
CVE-2017-6638
A vulnerability in how DLL files are loaded with Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to install and run an executable file with privileges equivalent to the Microsoft Windows SYSTEM account. The vulnerability is d...
Cisco Anyconnect Secure Mobility Client
1 Github repository
NA
CVE-2015-0755
The Posture module for Cisco Identity Services Engine (ISE), as distributed in Cisco AnyConnect Secure Mobility Client 4.0(64), allows local users to gain privileges via unspecified commands, aka Bug ID CSCut05797.
Cisco Anyconnect Secure Mobility Client 4.0\\(64\\)
NA
CVE-2015-4289
Directory traversal vulnerability in Cisco AnyConnect Secure Mobility Client 4.0(2049) allows remote head-end systems to write to arbitrary files via a crafted configuration attribute, aka Bug ID CSCut93920.
Cisco Anyconnect Secure Mobility Client 4.0\\(2049\\)
NA
CVE-2012-2495
The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR8 and Cisco Secure Desktop prior to 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to forc...
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.4
Cisco Secure Desktop 3.3
Cisco Secure Desktop 3.5.2001
Cisco Secure Desktop 3.2.1
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.1
Cisco Secure Desktop 3.5.841
Cisco Secure Desktop 3.4.2
Cisco Secure Desktop 3.4.1
Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.1.1.27
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.5
Cisco Secure Desktop 3.5.1077
Cisco Secure Desktop
NA
CVE-2007-1067
Cisco Secure Services Client (CSSC) 4.x, Trust Agent 1.x and 2.x, Cisco Security Agent (CSA) 5.0 and 5.1 (when a vulnerable Trust Agent has been deployed), and the Meetinghouse AEGIS SecureConnect Client do not properly parse commands, which allows local users to gain privileges ...
Cisco Secure Services Client 4.x
Cisco Security Agent 5.0
Meetinghouse Aegis Secureconnect Client Windows Platform
Cisco Security Agent 5.1
Cisco Trust Agent 1
NA
CVE-2012-4655
The WebLaunch feature in Cisco Secure Desktop prior to 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote malicious users to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug IDs CSC...
Cisco Secure Desktop 3.4
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.6.3002
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.6
Cisco Secure Desktop 3.5.2008
Cisco Secure Desktop 3.4.2
Cisco Secure Desktop 3.6.181
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.6.185
Cisco Secure Desktop 3.1
Cisco Secure Desktop 3.5.841
Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.4.1
Cisco Secure Desktop 3.2.1
Cisco Secure Desktop 3.5
Cisco Secure Desktop 3.6.4021
Cisco Secure Desktop 3.1.1.27
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.6.1001
Cisco Secure Desktop 3.3
Cisco Secure Desktop 3.6.2002
NA
CVE-2015-4211
Cisco AnyConnect Secure Mobility Client 3.1(60) on Windows does not properly validate pathnames, which allows local users to gain privileges via a crafted INF file, aka Bug ID CSCus65862.
Cisco Anyconnect Secure Mobility Client 3.1\\(60\\)
7.5
CVSSv3
CVE-2019-1853
A vulnerability in the HostScan component of Cisco AnyConnect Secure Mobility Client for Linux could allow an unauthenticated, remote malicious user to read sensitive information on an affected system. The vulnerability exists because the affected software performs improper bound...
Cisco Anyconnect Secure Mobility Client 4.6\\(2074\\)
7.8
CVSSv3
CVE-2021-1427
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to hijack DLL or executable files that are used by the application. A successful exploit could allow...
Cisco Anyconnect Secure Mobility Client
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
hard-coded
CVE-2024-27202
NULL pointer dereference
CVE-2024-28075
CVE-2024-33608
CVE-2024-28889
CVE-2024-34572
template injection
CVE-2024-34351
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »