QwikSec

Security Database

CVE

CWE

Training

CVE Database
/

CVE-2018-0373

Back to search

CVE-2018-0373

Published: Jun 21, 2018

Modified: Nov 29, 2024

PUBLISHED

Description

A vulnerability in vpnva-6.sys for 32-bit Windows and vpnva64-6.sys for 64-bit Windows of Cisco AnyConnect Secure Mobility Client for Windows Desktop could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to improper validation of user-supplied data. An attacker could exploit this vulnerability by sending a malicious request to the application. A successful exploit could allow the attacker to cause a DoS condition on the affected system. Cisco Bug IDs: CSCvj47654.

VendorProductVersions

n/a

Cisco AnyConnect Secure Mobility Client unknown

affected
Cisco AnyConnect Secure Mobility Client unknown

Weaknesses (CWE)

CWE-20

References

1041176
vdb-entry
x_refsource_SECTRACK
104548
vdb-entry
x_refsource_BID

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now