CVE-2023-20178

Published: Jun 28, 2023

Modified: Aug 2, 2024

PUBLISHED

CVSS v3.1

7.8

HIGH

Description

A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows could allow a low-privileged, authenticated, local attacker to elevate privileges to those of SYSTEM. The client update process is executed after a successful VPN connection is established. This vulnerability exists because improper permissions are assigned to a temporary directory that is created during the update process. An attacker could exploit this vulnerability by abusing a specific function of the Windows installer process. A successful exploit could allow the attacker to execute code with SYSTEM privileges.

Vendor	Product	Versions
Cisco	Cisco Secure Client	affected `4.9.00086` affected `4.9.01095` affected `4.9.02028` affected `4.9.03047` affected `4.9.03049` +19 more versions

Weaknesses (CWE)

CWE-276

CVSS v3.1 Details

CVSS v3.1 Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

cisco-sa-ac-csc-privesc-wx4U4Kw

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2023-20178

Description

Affected Products

Weaknesses (CWE)

CVSS v3.1 Details

References