Anyconnect Secure Mobility Client Security Vulnerabilities and Issues — Anyconnect Secure Mobility Client CVE List

Lucene search

CiscoAnyconnect Secure Mobility Client

3 matches found

CVE•added 2011/06/02 7:55 p.m.•48 views

CVE-2011-2040

The helper application in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file (vpndownloader.exe) without verifying its authenticity, which allows remote attackers to execute arb...

9.3CVSS7.7AI score0.02091EPSS

CVE•added 2012/06/20 8:55 p.m.•48 views

CVE-2012-2493

The VPN downloader implementation in the WebLaunch feature in Cisco AnyConnect Secure Mobility Client 2.x before 2.5 MR6 on Windows, and 2.x before 2.5 MR6 and 3.x before 3.0 MR8 on Mac OS X and Linux, does not properly validate binaries that are received by the downloader process, which allows rem...

9.3CVSS7.6AI score0.01576EPSS

CVE•added 2012/09/16 10:34 a.m.•34 views

CVE-2012-3088

Cisco AnyConnect Secure Mobility Client 3.1.x before 3.1.00495, and 3.2.x, does not check whether an HTTP request originally contains ScanSafe headers, which allows remote attackers to have an unspecified impact via a crafted request, aka Bug ID CSCua13166.

9.3CVSS6.9AI score0.00484EPSS