CVE-2020-3435
Cisco AnyConnect Secure Mobility Client for Windows is affected by CVE-2020-3435, an IPC channel vulnerability that allows an authenticated, local attacker to overwrite VPN profiles due to insufficient validation of input. The issue enables modification of VPN profile files via crafted IPC messag...