Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anyconnect secure mobility client vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-8021
Cross-site scripting (XSS) vulnerability in Cisco AnyConnect Secure Mobility Client 3.1(.02043) and previous versions and Cisco HostScan Engine 3.1(.05183) and previous versions allows remote malicious users to inject arbitrary web script or HTML via vectors involving an applet-p...
Cisco Hostscan Engine
Cisco Anyconnect Secure Mobility Client
NA
CVE-2012-2496
A certain Java applet in the VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR7 on 64-bit Linux platforms does not properly restrict use of Java components, which allows remote malicious users to execute arbitrar...
Cisco Anyconnect Secure Mobility Client 3.0
NA
CVE-2012-2495
The HostScan downloader implementation in Cisco AnyConnect Secure Mobility Client 3.x prior to 3.0 MR8 and Cisco Secure Desktop prior to 3.6.6020 does not compare the timestamp of offered software to the timestamp of installed software, which allows remote malicious users to forc...
Cisco Anyconnect Secure Mobility Client 3.0
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.4
Cisco Secure Desktop 3.3
Cisco Secure Desktop 3.5.2001
Cisco Secure Desktop 3.2.1
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.1
Cisco Secure Desktop 3.5.841
Cisco Secure Desktop 3.4.2
Cisco Secure Desktop 3.4.1
Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.1.1.27
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.5
Cisco Secure Desktop 3.5.1077
Cisco Secure Desktop
7.8
CVSSv3
CVE-2021-1366
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on t...
Cisco Anyconnect Secure Mobility Client
1 Github repository
6.7
CVSSv3
CVE-2021-1567
A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on the AnyConnect clien...
Cisco Anyconnect Secure Mobility Client
6.5
CVSSv3
CVE-2020-3153
A vulnerability in the installer component of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated local malicious user to copy user-supplied files to system level directories with system level privileges. The vulnerability is due to the incorrect hand...
Cisco Anyconnect Secure Mobility Client
4 Github repositories
1 Article
NA
CVE-2012-4655
The WebLaunch feature in Cisco Secure Desktop prior to 3.6.6020 does not properly validate binaries that are received by the downloader process, which allows remote malicious users to execute arbitrary code via vectors involving (1) ActiveX or (2) Java components, aka Bug IDs CSC...
Cisco Secure Desktop 3.4
Cisco Secure Desktop 3.1.1.45
Cisco Secure Desktop 3.6.3002
Cisco Secure Desktop 3.2
Cisco Secure Desktop 3.6
Cisco Secure Desktop 3.5.2008
Cisco Secure Desktop 3.4.2
Cisco Secure Desktop 3.6.181
Cisco Secure Desktop 3.1.1
Cisco Secure Desktop 3.6.185
Cisco Secure Desktop 3.1
Cisco Secure Desktop 3.5.841
Cisco Secure Desktop 3.4.2048
Cisco Secure Desktop 3.4.1
Cisco Secure Desktop 3.2.1
Cisco Secure Desktop 3.5
Cisco Secure Desktop 3.6.4021
Cisco Secure Desktop 3.1.1.27
Cisco Secure Desktop 3.1.1.33
Cisco Secure Desktop 3.6.1001
Cisco Secure Desktop 3.3
Cisco Secure Desktop 3.6.2002
NA
CVE-2012-2493
The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x prior to 2.5 MR6 on Windows, and 2.x prior to 2.5 MR6 and 3.x prior to 3.0 MR8 on Mac OS X and Linux, does not properly validate binaries that are received by the downloader ...
Cisco Anyconnect Secure Mobility Client 2.2.136
Cisco Anyconnect Secure Mobility Client 2.3
Cisco Anyconnect Secure Mobility Client 2.4.0202
Cisco Anyconnect Secure Mobility Client 2.5
Cisco Anyconnect Secure Mobility Client 2.3.185
Cisco Anyconnect Secure Mobility Client 2.3.2016
Cisco Anyconnect Secure Mobility Client 2.3.254
Cisco Anyconnect Secure Mobility Client 2.4
Cisco Anyconnect Secure Mobility Client 2.0
Cisco Anyconnect Secure Mobility Client 2.1
Cisco Anyconnect Secure Mobility Client 2.2
Cisco Anyconnect Secure Mobility Client 2.2.128
Cisco Anyconnect Secure Mobility Client 2.2.133
Cisco Anyconnect Secure Mobility Client 2.2.140
Cisco Anyconnect Secure Mobility Client 2.4.1012
Cisco Anyconnect Secure Mobility Client 3.0
7.8
CVSSv3
CVE-2021-40124
A vulnerability in the Network Access Manager (NAM) module of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local malicious user to escalate privileges on an affected device. This vulnerability is due to incorrect privilege assignment to script...
Cisco Anyconnect Secure Mobility Client
NA
CVE-2020-3432
A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. The vulnerability is due to the incorrect handling of directory paths. An attacker...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »