The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco AnyConnect Secure Mobility Client

Cisco AnyConnect Secure Mobility Client: information disclosure
A local attacker can read a memory fragment of Cisco AnyConnect Secure Mobility Client, in order to obtain sensitive information...
cisco-sa-20190515-anyconnectclient-oob-read, CVE-2019-1853, VIGILANCE-VUL-29344
Cisco AnyConnect Secure Mobility Client for Windows Desktop: denial of service
An attacker can generate a fatal error of Cisco AnyConnect Secure Mobility Client for Windows Desktop, in order to trigger a denial of service...
CERTFR-2018-AVI-298, cisco-sa-20180620-anyconnect-dos, CSCvj47654, CVE-2018-0373, VIGILANCE-VUL-26468
Cisco AnyConnect: information disclosure via Certificate Management Subsystem
An attacker can bypass access restrictions to data via Certificate Management Subsystem of Cisco AnyConnect, in order to obtain sensitive information...
CERTFR-2018-AVI-270, CSCvh23141, CVE-2018-0334, VIGILANCE-VUL-26339
Cisco ASA, Cisco AnyConnect: privilege escalation via SAML Authentication Session Fixation
An attacker can bypass restrictions via SAML Authentication Session Fixation of Cisco ASA and Cisco AnyConnect, in order to escalate his privileges...
CERTFR-2018-AVI-194, cisco-sa-20180418-asaanyconnect, CSCvg65072, CSCvh87448, CVE-2018-0229, VIGILANCE-VUL-25923
Cisco AnyConnect: external XML entity injection via Profile Editor
An attacker can transmit malicious XML data via Profile Editor to Cisco AnyConnect, in order to read a file, scan sites, or trigger a denial of service...
cisco-sa-20180117-acpe, CSCvg19341, CVE-2018-0100, VIGILANCE-VUL-25117
WPA2: information disclosure via Key Reinstallation Attacks
An attacker can bypass access restrictions to data via Key Reinstallation Attacks of WPA2, in order to obtain sensitive information...
ARUBA-PSA-2017-007, CERTFR-2017-ALE-014, CERTFR-2017-AVI-357, CERTFR-2017-AVI-358, CERTFR-2017-AVI-359, CERTFR-2017-AVI-360, CERTFR-2017-AVI-361, CERTFR-2017-AVI-363, CERTFR-2017-AVI-373, CERTFR-2017-AVI-379, CERTFR-2017-AVI-383, CERTFR-2017-AVI-390, CERTFR-2017-AVI-441, CERTFR-2017-AVI-478, CERTFR-2018-AVI-014, CERTFR-2018-AVI-048, cisco-sa-20171016-wpa, CVE-2017-13077, CVE-2017-13078, CVE-2017-13079, CVE-2017-13080, CVE-2017-13081, CVE-2017-13082, CVE-2017-13084, CVE-2017-13086, CVE-2017-13087, CVE-2017-13088, DLA-1150-1, DLA-1200-1, DLA-1573-1, DSA-3999-1, FEDORA-2017-12e76e8364, FEDORA-2017-45044b6b33, FEDORA-2017-60bfb576b7, FEDORA-2017-cfb950d8f4, FEDORA-2017-fc21e3856b, FG-IR-17-196, FreeBSD-SA-17:07.wpa, HT208221, HT208222, HT208334, HT208394, JSA10827, K-511282, KRACK Attacks, openSUSE-SU-2017:2755-1, openSUSE-SU-2017:2846-1, openSUSE-SU-2017:2896-1, openSUSE-SU-2017:2905-1, openSUSE-SU-2017:3144-1, RHSA-2017:2907-01, RHSA-2017:2911-01, SSA:2017-291-02, SSA-418456, SSA-901333, STORM-2017-005, SUSE-SU-2017:2745-1, SUSE-SU-2017:2752-1, SUSE-SU-2017:2847-1, SUSE-SU-2017:2869-1, SUSE-SU-2017:2908-1, SUSE-SU-2017:2920-1, SUSE-SU-2017:3106-1, SUSE-SU-2017:3165-1, SUSE-SU-2017:3265-1, SUSE-SU-2017:3267-1, SUSE-SU-2018:0040-1, SUSE-SU-2018:0171-1, Synology-SA-17:60, Synology-SA-17:60 KRACK, USN-3455-1, USN-3505-1, VIGILANCE-VUL-24144, VU#228519
Cisco AnyConnect Secure Mobility Client: privilege escalation via NAM
An attacker can bypass restrictions via NAM of Cisco AnyConnect Secure Mobility Client, in order to escalate his privileges...
CERTFR-2017-AVI-333, cisco-sa-20171004-anam, CSCvf66539, CVE-2017-12268, VIGILANCE-VUL-24028
Cisco AnyConnect Secure Mobility Client: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco AnyConnect Secure Mobility Client, in order to run JavaScript code in the context of the web site...
CERTFR-2017-AVI-269, cisco-sa-20170816-caw, CSCvf12055, CVE-2017-6788, VIGILANCE-VUL-23557
Cisco AnyConnect Secure Mobility Client: executing DLL code
An attacker can create a malicious DLL, and then put it in the current directory of Cisco AnyConnect Secure Mobility Client for MS-Windows, in order to run code with the system privileges...
CERTFR-2017-AVI-171, cisco-sa-20170607-anyconnect, CVE-2017-6638, VIGILANCE-VUL-22920
Cisco AnyConnect Secure Mobility Client: privilege escalation via Start Before Logon
An attacker can bypass restrictions via Start Before Logon of Cisco AnyConnect Secure Mobility Client, in order to escalate his privileges...
CERTFR-2017-AVI-043, cisco-sa-20170208-anyconnect, CSCvc43976, CVE-2017-3813, VIGILANCE-VUL-21781
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco AnyConnect Secure Mobility Client: