Exploit for Uncontrolled Search Path Element in Cisco Anyconnect Secure Mobility Client

🗓️ 08 Sep 2023 09:20:20Type

Vulnerability in Cisco AnyConnect Secure Mobility Client allows local privilege escalation through DLL hijacking in the HostScan module

5 of 5AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 9
Prion	Input validation	17 Feb 202117:15	–	prion
Core Security	Cisco AnyConnect Posture (HostScan) Security Service Multiple Vulnerabilities	17 Feb 202100:00	–	coresecurity
Core Security	Cisco AnyConnect Posture (HostScan) Security Service CVE-2021-1366 Bypass	16 Jun 202100:00	–	coresecurity
NVD	CVE-2021-1366	17 Feb 202117:15	–	nvd
CVE	CVE-2021-1366	17 Feb 202117:15	–	cve
Cisco	Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability	17 Feb 202116:00	–	cisco
Tenable Nessus	Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability (cisco-sa-anyconnect-dll-hijac-JrcTOQMC)	18 Feb 202100:00	–	nessus
Cvelist	CVE-2021-1366 Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability	17 Feb 202116:55	–	cvelist
Vulnrichment	CVE-2021-1366 Cisco AnyConnect Secure Mobility Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability	17 Feb 202116:55	–	vulnrichment

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

08 Sep 2023 09:20Current

7.7High risk

Vulners AI Score7.7

CVSS26.9

CVSS37.8

EPSS0.00657

SSVC