Lucene search
HistoryJun 04, 2015 - 10:59 a.m.
CVE-2015-0761
cisco anyconnect
secure mobility client
linux
root privileges
bug id cscus86790
cve-2015-0761
nvd
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Cisco AnyConnect Secure Mobility Client before 3.1(8009) and 4.x before 4.0(2052) on Linux does not properly implement unspecified internal functions, which allows local users to obtain root privileges via crafted vpnagent options, aka Bug ID CSCus86790.
Affected configurations
Node
ciscoanyconnect_secure_mobility_clientRange≤3.1\(.07021\)
ORciscoanyconnect_secure_mobility_clientMatch4.0\(.00048\)
ORciscoanyconnect_secure_mobility_clientMatch4.0\(.00051\)
Related
cvelist
cvelist
CVE-2015-0761
2015-06-04 10:00:00
prion
prion
Code injection
2015-06-04 10:59:00
nvd
nvd
CVE-2015-0761
2015-06-04 10:59:01
cisco
cisco
Cisco AnyConnect Secure Mobility Client Privilege Escalation Vulnerability
2015-06-02 22:14:27
7.2 High
CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
6.5 Medium
AI Score
Confidence
Low
0.0004 Low
EPSS
Percentile
5.1%
Related for CVE-2015-0761