Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2015-6305
HistorySep 26, 2015 - 1:59 a.m.

CVE-2015-6305

2015-09-2601:59:00
CWE-426
[email protected]
web.nvd.nist.gov
36
cve-2015-6305
untrusted search path vulnerability
cmainthread::launchdownloader
cisco anyconnect secure mobility client
windows
local users
privileges
cve-2015-4211

6.4 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

39.8%

JSON

Untrusted search path vulnerability in the CMainThread::launchDownloader function in vpndownloader.exe in Cisco AnyConnect Secure Mobility Client 2.0 through 4.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by dbghelp.dll, aka Bug ID CSCuv01279. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-4211.

CPENameOperatorVersion
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.0.0343
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.1.0.148
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.2.0133
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.2.0136
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.2.0140
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.3.0185
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.3.0254
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.3.1003
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.3.2016
cisco:anyconnect_secure_mobility_clientcisco anyconnect secure mobility clienteq2.4.0202
Rows per page:
1-10 of 511

Related

prion 2
nessus 1
securityvulns 2
cisco 2
githubexploit 1
exploitpack 1
cve 1
exploitdb 1
prion
prion
Design/Logic Flaw
2015-09-26 01:59:00
Code injection
2015-06-24 10:59:00
nessus
nessus
Cisco AnyConnect Secure Mobility Client 3.x < 3.1.11004.0 / 4.x < 4.1.6020.0 Privilege Escalation
2015-10-06 00:00:00
securityvulns
securityvulns
Cisco AnyConnect elevation of privileges via DLL side loading
2015-10-12 00:00:00
Cisco AnyConnect privilege escalation
2015-10-12 00:00:00
cisco
cisco
Cisco AnyConnect Secure Mobility Client for Windows Privilege Escalation Vulnerability
2015-09-22 16:02:20
Cisco AnyConnect Client for Windows Privilege Escalation Vulnerability
2015-06-23 17:53:01
githubexploit
githubexploit
Exploit for Uncontrolled Search Path Element in Cisco Anyconnect Secure Mobility Client
2020-05-19 18:59:26
exploitpack
exploitpack
Cisco AnyConnect Secure Mobility Client 3.1.08009 - Local Privilege Escalation
2015-09-22 00:00:00
cve
cve
CVE-2015-4211
2015-06-24 10:59:00
exploitdb
exploitdb
Cisco AnyConnect Secure Mobility Client 3.1.08009 - Local Privilege Escalation
2015-09-22 00:00:00

6.4 Medium

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

39.8%

JSON
Related for CVE-2015-6305
prion2nessus1securityvulns2cisco2githubexploit1exploitpack1cve1exploitdb1