Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2020-3433
HistoryAug 17, 2020 - 6:15 p.m.

CVE-2020-3433

2020-08-1718:15:00
CWE-427
[email protected]
web.nvd.nist.gov
636
In Wild
3
cisco
anyconnect
windows
vulnerability
ipc
dll hijacking
authentication
exploit
nvd

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

32.1%

JSON

A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system. The vulnerability is due to insufficient validation of resources that are loaded by the application at run time. An attacker could exploit this vulnerability by sending a crafted IPC message to the AnyConnect process. A successful exploit could allow the attacker to execute arbitrary code on the affected machine with SYSTEM privileges. To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system.

Social References

More

Related

cisco 1
prion 1
cisa_kev 1
thn 2
attackerkb 2
nessus 2
zdt 1
metasploit 1
packetstorm 1
threatpost 1
rapid7blog 2
cisco
cisco
Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability
2020-08-05 16:00:00
prion
prion
Input validation
2020-08-17 18:15:00
cisa_kev
cisa_kev
Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking Vulnerability
2022-10-24 00:00:00
thn
thn
OldGremlin Ransomware Targeted Over a Dozen Russian Entities in Multi-Million Scheme
2022-10-20 16:31:00
Hackers Actively Exploiting Cisco AnyConnect and GIGABYTE Drivers Vulnerabilities
2022-10-26 07:55:00
attackerkb
attackerkb
CVE-2020-3153
2020-02-20 00:00:00
CVE-2020-3433
2020-08-17 00:00:00
nessus
nessus
Cisco AnyConnect Secure Mobility Client for Windows DLL Hijacking
2022-05-31 00:00:00
Cisco AnyConnect Secure Mobility Client for Windows DoS
2020-08-07 00:00:00
zdt
zdt
Cisco AnyConnect Privilege Escalation Exploit
2020-10-01 00:00:00
metasploit
metasploit
Cisco AnyConnect Privilege Escalations (CVE-2020-3153 and CVE-2020-3433)
2020-09-25 21:04:58
packetstorm
packetstorm
Cisco AnyConnect Privilege Escalation
2020-09-30 00:00:00
threatpost
threatpost
High-Severity Cisco DoS Flaw Plagues Small-Business Switches
2020-08-06 15:24:45
rapid7blog
rapid7blog
Metasploit Wrap-Up
2020-10-02 19:46:50
Metasploit 2020 Wrap-Up
2020-12-30 15:38:00

7.8 High

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

7.8 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

32.1%

JSON
Related for CVE-2020-3433
cisco1prion1cisa_kev1thn2attackerkb2nessus2zdt1metasploit1packetstorm1threatpost1rapid7blog2