Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anyconnect vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-1370
Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 allows remote authenticated users to cause a denial of service (vpnagentd process crash) via a crafted packet, aka Bug ID CSCty01670.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.0629
Cisco Anyconnect Secure Mobility Client 3.0.07059
NA
CVE-2012-2499
The IPsec implementation in Cisco AnyConnect Secure Mobility Client 3.0 prior to 3.0.08057 does not verify the certificate name in an X.509 certificate, which allows man-in-the-middle malicious users to spoof servers via a crafted certificate, aka Bug ID CSCtz26985.
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 3.0.07059
Cisco Anyconnect Secure Mobility Client 3.0.0629
NA
CVE-2015-0761
Cisco AnyConnect Secure Mobility Client prior to 3.1(8009) and 4.x prior to 4.0(2052) on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790.
Cisco Anyconnect Secure Mobility Client
Cisco Anyconnect Secure Mobility Client 4.0\\(.00051\\)
Cisco Anyconnect Secure Mobility Client 4.0\\(.00048\\)
NA
CVE-2012-3088
Cisco AnyConnect Secure Mobility Client 3.1.x prior to 3.1.00495, and 3.2.x, does not check whether an HTTP request originally contains ScanSafe headers, which allows remote malicious users to have an unspecified impact via a crafted request, aka Bug ID CSCua13166.
Cisco Anyconnect Secure Mobility Client 3.1.0
Cisco Anyconnect Secure Mobility Client 3.2.0
6.1
CVSSv3
CVE-2017-6788
The WebLaunch functionality of Cisco AnyConnect Secure Mobility Client Software contains a vulnerability that could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the affected software. The vulnerability is due to ...
Cisco Anyconnect Secure Mobility Client 4.4\\(4027\\)
Cisco Anyconnect Secure Mobility Client 4.5\\(58\\)
NA
CVE-2009-5007
The Cisco trial client on Linux for Cisco AnyConnect SSL VPN allows local users to overwrite arbitrary files via a symlink attack on unspecified temporary files.
Cisco Anyconnect Ssl Vpn -
NA
CVE-2012-2494
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x prior to 2.5 MR6 and 3.x prior to 3.0 MR8 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to fo...
Cisco Anyconnect Secure Mobility Client 2.1
Cisco Anyconnect Secure Mobility Client 2.3.185
Cisco Anyconnect Secure Mobility Client 2.3.254
Cisco Anyconnect Secure Mobility Client 2.4.0202
Cisco Anyconnect Secure Mobility Client 2.4.1012
Cisco Anyconnect Secure Mobility Client 2.5
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Anyconnect Secure Mobility Client 2.2.128
Cisco Anyconnect Secure Mobility Client 2.2.133
Cisco Anyconnect Secure Mobility Client 2.2.136
Cisco Anyconnect Secure Mobility Client 2.2.140
Cisco Anyconnect Secure Mobility Client 2.3
Cisco Anyconnect Secure Mobility Client 2.0
Cisco Anyconnect Secure Mobility Client 2.2
Cisco Anyconnect Secure Mobility Client 2.3.2016
Cisco Anyconnect Secure Mobility Client 2.4
7.8
CVSSv3
CVE-2020-3433
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to perform a DLL hijacking attack. To exploit this vulnerability, the attacker would need to have valid creden...
Cisco Anyconnect Secure Mobility Client
1 Article
7.8
CVSSv3
CVE-2021-1237
A vulnerability in the Network Access Manager and Web Security Agent components of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to perform a DLL injection attack. To exploit this vulnerability, the attacker would need to h...
Cisco Anyconnect Secure Mobility Client
NA
CVE-2015-0662
Cisco AnyConnect Secure Mobility Client 4.0(.00051) and previous versions allows local users to gain privileges via crafted IPC messages that trigger use of root privileges for a software-package installation, aka Bug ID CSCus79385.
Cisco Anyconnect Secure Mobility Client
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »