EUVD-2021-27311

Malware in sbrugna...

EUVD-2024-18106

Malicious code in bioql PyPI...

CVE-2024-20391

A vulnerability in the Network Access Manager NAM module of Cisco Secure Client could allow an unauthenticated attacker with physical access to an affected device to elevate privileges to SYSTEM. This vulnerability is due to a lack of authentication on a specific function. A successful exploit...

Cisco Network Access Manager Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco Network Access Manager Directory Traversal Vulnerability', 'Description' = %q This module tests whether a directory traversal vulnerability...

CVE-2024-20391

A vulnerability in the Network Access Manager NAM module of Cisco Secure Client could allow an unauthenticated attacker with physical access to an affected device to elevate privileges to SYSTEM. This vulnerability is due to a lack of authentication on a specific function. A successful exploit...

Cisco Secure Client for Windows with Network Access Manager Module Privilege Escalation Vulnerability

A vulnerability in the Network Access Manager NAM module of Cisco Secure Client could allow an unauthenticated attacker with physical access to an affected device to elevate privileges to SYSTEM. This vulnerability is due to a lack of authentication on a specific function. A successful exploit...

PT-2024-18657 · Cisco · Cisco Secure Client

Name of the Vulnerable Software and Affected Versions: Cisco Secure Client affected versions not specified Description: A lack of authentication on a specific function in the Network Access Manager NAM module could allow an unauthenticated attacker with physical access to an affected device to...

Cisco AnyConnect Secure Mobility Client Privilege Escalation (cisco-sa-anyconnect-nam-priv-yCsRNUGT)

The version of Cisco AnyConnect Secure Mobility Client installed on the remote host is prior to 4.10.03104. It is, therefore, affected by a privilege escalation vulnerability in its Network Access Manager NAM module due to incorrect privilege assignment to scripts executed before user logon. An...

CVE-2021-40124

A vulnerability in the Network Access Manager NAM module of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to escalate privileges on an affected device. This vulnerability is due to incorrect privilege assignment to scripts executed before user...

Cisco AnyConnect Secure Mobility Client for Windows with Network Access Manager Module Privilege Escalation Vulnerability

A vulnerability in the Network Access Manager NAM module of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to escalate privileges on an affected device. This vulnerability is due to incorrect privilege assignment to scripts executed before user...

CVE-2021-1237 Cisco AnyConnect Secure Mobility Client for Windows DLL Injection Vulnerability

A vulnerability in the Network Access Manager and Web Security Agent components of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL injection attack. To exploit this vulnerability, the attacker would need to have valid credentials o...

Cisco AnyConnect Network Access Manager and AnyConnect Secure Mobility Client Certificate Bypass Vulnerability

Cisco AnyConnect Network Access Manager and AnyConnect Secure Mobility Client are both products of Cisco, U.S.A. Cisco Network Access Manager NAM is one of the network access managers. AnyConnect Secure Mobility Client is a secure mobility client that provides secure access to networks and...

Cisco AnyConnect Secure Mobility Client Network Access Manager Security Bypass Vulnerability

Cisco AnyConnect Secure Mobility Client is a secure mobility client from Cisco that provides secure access to networks and applications from any device.Network Access Manager NAM is one of the network access managers. A security vulnerability exists in the NAM in the Cisco AnyConnect Secure...

CVE-2017-12268

A vulnerability in the Network Access Manager NAM of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker to enable multiple network adapters, aka a Dual-Homed Interface vulnerability. The vulnerability is due to insufficient NAM policy enforcement. An attacker cou...

Security feature bypass

A vulnerability in the Network Access Manager NAM of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker to enable multiple network adapters, aka a Dual-Homed Interface vulnerability. The vulnerability is due to insufficient NAM policy enforcement. An attacker cou...

CVE-2017-12268

Cisco AnyConnect Secure Mobility Client’s Network Access Manager (NAM) contains a local, authenticated vulnerability that allows enabling multiple network adapters (Dual-Homed Interface) due to insufficient NAM policy enforcement. An attacker could manipulate device interfaces to sustain multiple...

Cisco Network Access Manager Directory Traversal Vulnerability

This module tests whether a directory traversal vulnerability is present in versions of Cisco Network Access Manager 4.8.x You may wish to change FILE e.g. passwd or hosts, MAXDIRS and RPORT depending on your environment. This module requires Metasploit: https://metasploit.com/download Current...