Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
6.6
CVSSv2

CVE-2013-1172

Published: 11/04/2013 Updated: 11/04/2013
CVSS v2 Base Score: 6.6 | Impact Score: 10 | Exploitability Score: 2.7
VMScore: 587
Vector: AV:L/AC:M/Au:S/C:C/I:C/A:C
Subscribe to Cisco

Vulnerability Summary

The Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) does not properly verify files, which allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14153.

Vulnerable Product Search on Vulmon Subscribe to Product

cisco anyconnect secure mobility client 3.0.5075

cisco anyconnect secure mobility client 2.0

cisco anyconnect secure mobility client 2.2

cisco anyconnect secure mobility client 2.1

cisco anyconnect secure mobility client 2.2.140

cisco anyconnect secure mobility client 2.5.2018

cisco anyconnect secure mobility client 2.5.2017

cisco anyconnect secure mobility client 2.5.2014

cisco anyconnect secure mobility client 2.5.2011

cisco anyconnect secure mobility client 2.5.5118

cisco anyconnect secure mobility client 2.5.5125

cisco anyconnect secure mobility client 2.4.7073

cisco anyconnect secure mobility client 2.5.5116

cisco anyconnect secure mobility client 2.5.2006

cisco anyconnect secure mobility client 2.5.2001

cisco anyconnect secure mobility client 2.5.1025

cisco anyconnect secure mobility client 3.0

cisco anyconnect secure mobility client -

cisco anyconnect secure mobility client 2.5.3054

cisco anyconnect secure mobility client 2.3.2016

cisco anyconnect secure mobility client 2.3.254

cisco anyconnect secure mobility client 2.3.185

cisco anyconnect secure mobility client 2.4

cisco anyconnect secure mobility client 3.0.07059

cisco anyconnect secure mobility client 3.0.08057

cisco anyconnect secure mobility client 3.0.0629

cisco anyconnect secure mobility client 2.5.3041

cisco anyconnect secure mobility client 2.5.3046

cisco anyconnect secure mobility client 2.5.5130

cisco anyconnect secure mobility client 2.5.0217

cisco anyconnect secure mobility client 2.5.6005

cisco anyconnect secure mobility client 3.0.08066

cisco anyconnect secure mobility client 2.2.136

cisco anyconnect secure mobility client 2.2.128

cisco anyconnect secure mobility client 2.4.1012

cisco anyconnect secure mobility client 2.5

cisco anyconnect secure mobility client 3.0.3050

cisco anyconnect secure mobility client 3.0.4235

cisco anyconnect secure mobility client 3.0.2052

cisco anyconnect secure mobility client 2.4.7030

cisco anyconnect secure mobility client 2.4.4014

cisco anyconnect secure mobility client 2.5.5131

cisco anyconnect secure mobility client 3.1.0

cisco anyconnect secure mobility client 2.5.3051

cisco anyconnect secure mobility client 2.5.3055

cisco anyconnect secure mobility client 2.3

cisco anyconnect secure mobility client 2.2.133

cisco anyconnect secure mobility client 2.4.0202

cisco anyconnect secure mobility client 2.5.2019

cisco anyconnect secure mobility client 2.5.2010

cisco anyconnect secure mobility client 3.0.3054

cisco anyconnect secure mobility client 3.0.5080

cisco anyconnect secure mobility client 3.0.1047

cisco anyconnect secure mobility client 2.5.5112

cisco anyconnect secure mobility client 2.4.4004

cisco anyconnect secure mobility client 3.1.00495

cisco anyconnect secure mobility client 2.4.5004

cisco anyconnect secure mobility client 3.2.0

Vendor Advisories

Cisco: Cisco Host Scan Component of AnyConnect Secure Mobility and Secure Desktop Privilege Elevation Vulnerability
The Cisco Host Scan component of Cisco AnyConnect Secure Mobility and Cisco Secure Desktop contains multiple vulnerabilities that could allow a local, unprivileged user to elevate privileges to those of SYSTEM Cisco has confirmed the vulnerability in a security notice and software updates are available To exploit this vulnerability, the attack ...

References

CWE-20http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1172https://nvd.nist.govhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130411-CVE-2013-1172
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-38028CVE-2024-32406CVE-2024-25624IMAPCVE-2024-2310CVE-2024-0874CVE-2024-20359XXEremote code execution
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook