Cisco AnyConnect Secure Mobility Client sérülékenysége
Angol cím: Cisco AnyConnect Secure Mobility Client vulnerability
Publikálás dátuma: 2023.06.07.
Utolsó módosítás dátuma: 2023.06.09.
Leírás
A sérülékenységet kihasználva jogosultság kiterjesztés érhető el, mely segítségével SYSTEM jogosultsággal futtatható parancs az érintett rendszeren.
Elemzés leírás
Eredeti nyelven:
A vulnerability in the client update feature of Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows could allow a low-privileged, authenticated, local attacker to elevate privileges to those of SYSTEM.
This vulnerability exists because improper permissions are assigned to a temporary directory that is created during the upgrade process. An attacker could exploit this vulnerability by abusing a specific function of the Windows installer process. A successful exploit could allow the attacker to execute code with SYSTEM privileges.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
Elemzés leírás forrása: sec.cloudapps.cisco.comHatás
CVSS3.1 Súlyosság és Metrika
Base score: 7.8 (Magas)
Vector: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Impact Score: 5.9
Exploitability Score: 1.8
Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): Low
User Interaction (UI): None
Scope (S): Unchanged
Confidentiality Impact (C): High
Integrity Impact (I): High
Availability Impact (A): High
Sérülékeny szoftverek
Cisco AnyConnect Secure Mobility Client for Windows Software 4.10 és előtti verziók
Cisco Secure Client for Windows Software 5.0 és előtti verziók