4 matches found
Hackers Actively Exploiting Cisco AnyConnect and GIGABYTE Drivers Vulnerabilities
Cisco has warned of active exploitation attempts targeting a pair of two-year-old security flaws in the Cisco AnyConnect Secure Mobility Client for Windows. Tracked as CVE-2020-3153 CVSS score: 6.5 and CVE-2020-3433 CVSS score: 7.8, the vulnerabilities could enable local authenticated attackers t...
Cisco AnyConnect Privilege Escalations (CVE-2020-3153 and CVE-2020-3433)
The installer component of Cisco AnyConnect Secure Mobility Client for Windows prior to 4.8.02042 is vulnerable to path traversal and allows local attackers to create/overwrite files in arbitrary locations with system level privileges. The installer component of Cisco AnyConnect Secure Mobility...
Cisco AnyConnect Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco AnyConnect Privilege Escalations CVE-2020-3153 and CVE-2020-3433', 'Description' = %q The installer component of Cisco AnyConnect Secure...
CVE-2020-3433
creationtimestamp| type| source ---|---|--- 2020-09-29 18:51:17+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/local/anyconnectlpe.rb 2023-06-14 21:10:04+00:00| seen| MISP/3c19819c-1dac-4ef2-bfed-be5efa7e0123 2023-12-04 02:22:59+00:00| seen|...