A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system. The vulnerability is due to insufficient validation of resources that are loaded by the application at run time. An attacker could exploit this vulnerability by sending a crafted IPC message to the AnyConnect process. A successful exploit could allow the attacker to execute arbitrary code on the affected machine with SYSTEM privileges. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system.
oryginał ENCVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HCisco Anyconnect Secure Mobility Client
APPCisco< 4.9.00086
CISA KEV — szczegółyi
- Dostawcai
- Cisco ↗
- Produkti
- AnyConnect Secure
- Data dodania do KEVi
- 24 października 2022
- Termin remediation (USA)i
- 14 listopada 2022(po terminie)
- Ransomwarei
- Aktywne kampanie ransomware używają tej podatności
Zastosuj aktualizacje zgodnie z instrukcjami producenta.
▸ Pokaż oryginał (EN)
Apply updates per vendor instructions.
Kanał komunikacji międzyprocesowej (IPC) klienta Cisco AnyConnect Secure Mobility Client dla Windows pozwala na niewystarczającą walidację zasobów ładowanych przez aplikację w czasie uruchamiania. Atakujący posiadający ważne poświadczenia na Windows mógłby wykonać kod na zaatakowanej maszynie z uprawnieniami SYSTEM.
▸ Pokaż oryginał (EN)
Cisco AnyConnect Secure Mobility Client for Windows interprocess communication (IPC) channel allows for insufficient validation of resources that are loaded by the application at run time. An attacker with valid credentials on Windows could execute code on the affected machine with SYSTEM privileges.
Powiązane podatności
A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for Windows a...
A vulnerability in the shared library loading mechanism of Cisco AnyConnect Secure Mobility Client for Linux a...
A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for Windows could allo...
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility ...
Multiple vulnerabilities in the install, uninstall, and upgrade processes of Cisco AnyConnect Secure Mobility ...