CVE-2021-1258
CVE-2021-1258 affects Cisco AnyConnect Secure Mobility Client. The upgrade component contains a flaw with insufficient file permission restrictions, allowing an authenticated, low-privilege, local attacker to read arbitrary files from the underlying OS by sending a crafted command via the local C...