Cisco AnyConnect Secure Mobility Client 3.1.x prior to 3.1.00495, and 3.2.x, does not check whether an HTTP request originally contains ScanSafe headers, which allows remote malicious users to have an unspecified impact via a crafted request, aka Bug ID CSCua13166.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco anyconnect secure mobility client 3.1.0 |
||
cisco anyconnect secure mobility client 3.2.0 |