Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco secure client vulnerabilities and exploits
(subscribe to this query)
6.2
CVSSv2
CVE-2021-1567
A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on the AnyConnect clien...
Cisco Anyconnect Secure Mobility Client
6.9
CVSSv2
CVE-2021-1366
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on t...
Cisco Anyconnect Secure Mobility Client
1 Github repository
4.9
CVSSv2
CVE-2020-3153
A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local malicious user to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect hand...
Cisco Anyconnect Secure Mobility Client
4 Github repositories
1 Article
4.6
CVSSv2
CVE-2012-5429
The VPN driver in Cisco VPN Client on Windows does not properly interact with the kernel, which allows local users to cause a denial of service (kernel fault and system crash) via a crafted application, aka Bug ID CSCuc81669.
Cisco Vpn Client
4.3
CVSSv2
CVE-2015-6346
Cross-site scripting (XSS) vulnerability in Cisco Secure Access Control Server (ACS) 5.7(0.15) allows remote malicious users to inject arbitrary web script or HTML via a crafted URL.
Cisco Secure Access Control Server 5.7.0.15
9.3
CVSSv2
CVE-2011-0925
The CSDWebInstallerCtrl ActiveX control in CSDWebInstaller.ocx in Cisco Secure Desktop (CSD) allows remote malicious users to download an unintended Cisco program onto a client machine, and execute this program, by identifying a Cisco program with a Cisco digital signature and th...
Cisco Secure Desktop
5
CVSSv2
CVE-2002-0852
Buffer overflows in Cisco Virtual Private Network (VPN) Client 3.5.4 and previous versions allows remote malicious users to cause a denial of service via (1) an Internet Key Exchange (IKE) with a large Security Parameter Index (SPI) payload, or (2) an IKE packet with a large numb...
Cisco Vpn Client 3.5.1
Cisco Vpn Client 3.5.2
5
CVSSv2
CVE-2002-0853
Cisco Virtual Private Network (VPN) Client 3.5.4 and previous versions allows remote malicious users to cause a denial of service (CPU consumption) via a packet with a zero-length payload.
Cisco Vpn Client 3.5.1
Cisco Vpn Client 3.5.2
2.1
CVSSv2
CVE-2006-5806
SSL VPN Client in Cisco Secure Desktop prior to 3.1.1.45, when configured to spawn a web browser after a successful connection, stores sensitive browser session information in a directory outside of the CSD vault and does not restrict the user from saving files outside of the vau...
Cisco Secure Desktop
5
CVSSv2
CVE-2002-1095
Cisco VPN 3000 Concentrator prior to 2.5.2(F), with encryption enabled, allows remote malicious users to cause a denial of service (reload) via a Windows-based PPTP client with the "No Encryption" option set.
Cisco Vpn 3000 Concentrator Series Software 2.0
Cisco Vpn 3000 Concentrator Series Software 2.5.2.a
Cisco Vpn 3000 Concentrator Series Software 2.5.2.b
Cisco Vpn 3000 Concentrator Series Software 2.5.2.c
Cisco Vpn 3000 Concentrator Series Software 2.5.2.d
Cisco Secure Access Control Server 2.6.3
Cisco Vpn 3002 Hardware Client
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »