HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2023-20178

CVSS 7.8v3.1pub. 2023-06-28upd. 2024-11-21

A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows could allow a low-privileged, authenticated, local attacker to elevate privileges to those of SYSTEM. The client update process is executed after a successful VPN connection is established. This vulnerability exists because improper permissions are assigned to a temporary directory that is created during the update process. An attacker could exploit this vulnerability by abusing a specific function of the Windows installer process. A successful exploit could allow the attacker to execute code with SYSTEM privileges.

CVSS Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
  • Cisco Anyconnect Secure Mobility Client

    APP
    Cisco
    < 4.10.07061
  • Cisco Secure Client

    APP
    Cisco
    < 5.0.02075
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
VPN
CWE
References

Related vulnerabilities

CVE-2020-3433HIGH7.8⚠ KEVten sam produkt

A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for...

CVE-2025-20206HIGH7.1ten sam produkt

A vulnerability in the interprocess communication (IPC) channel of Cisco Secure Client for Windows could allow...

CVE-2024-3661HIGH7.6ten sam produkt

DHCP can add routes to a client’s routing table via the classless static route option (121). VPN-based securit...

CVE-2024-20337HIGH8.2ten sam produkt

A vulnerability in the SAML authentication process of Cisco Secure Client could allow an unauthenticated, remo...

CVE-2024-20338HIGH7.3ten sam produkt

A vulnerability in the ISE Posture (System Scan) module of Cisco Secure Client for Linux could allow an authen...