Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

CVE-2021-1366

🗓️ 17 Feb 2021 16:55:33Reported by ciscoType 
cve
 cve🔗 web.nvd.nist.gov📰️ 9 Media mentions👁 466 Views🌐 WEB

Vulnerability in Cisco AnyConnect Secure Mobility Client for Windows (CVE-2021-1366) allows DLL hijacking and arbitrary code execution by authenticated local attacker. Successful exploit could lead to SYSTEM privileges

Related
Detection
Affected
Refs
Paths
Social
ReporterTitlePublishedViews
Family
GithubExploit		Exploit for Uncontrolled Search Path Element in Cisco Anyconnect_Secure_Mobility_Client
8 Sep 202309:20
githubexploit
Circl		CVE-2021-1366
17 Feb 202120:49
circl
Cisco		Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability
17 Feb 202116:00
cisco
Tenable Nessus		Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability (cisco-sa-anyconnect-dll-hijac-JrcTOQMC)
18 Feb 202100:00
nessus
CNNVD		Cisco Anyconnect Secure Mobility Client Code Issue Vulnerability
17 Feb 202100:00
cnnvd
Core Security		Cisco AnyConnect Posture (HostScan) Security Service Multiple Vulnerabilities
17 Feb 202100:00
coresecurity
Core Security		Cisco AnyConnect Posture (HostScan) Security Service CVE-2021-1366 Bypass
16 Jun 202100:00
coresecurity
Cvelist		CVE-2021-1366 Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability
17 Feb 202116:55
cvelist
EUVD		EUVD-2021-6833
3 Oct 202520:07
euvd
NCSC		Vulnerability fixed in Cisco Anyconnect Client
18 Feb 202100:00
ncsc
Rows per page
NVD
Node
ciscoanyconnect_secure_mobility_clientRange<4.9.05042windows
[
  {
    "product": "Cisco AnyConnect Secure Mobility Client",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]
ParameterPositionPathDescriptionCWE
priv_file_copypathC:\Program Files(x86)\Cisco\Cisco HostScan\bin\ciscod.exeDLL hijacking via IPC with Privilege Escalation attempting to copy malicious DLLs into Cisco HostScan bin and load on restartCWE-427CWE-347

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
21 Nov 2024 05:44Current
7.6High risk
Vulners AI Score7.6
CVSS 26.9
CVSS 3.17.8
EPSS0.00645
SSVC
CWE-427CWE-347
cve-2021-1366vulnerabilityciscoanyconnectwindowsdll hijackingarbitrary code executionauthenticated attacker
466