CVE-2020-3153
Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability
CVSS
—
No CVSS
EPSS
28.3%
p98
KEV
YES
Oct 24, 2022
Exploit Today
79
0-100
Published: — · Last modified: —
Product
Cisco / AnyConnect Secure
Vulnerability
Cisco AnyConnect Secure Mobility Client for Windows Uncontrolled Search Path Vulnerability
Added to KEV
Oct 24, 2022
Remediate by
Nov 14, 2022
Known ransomware use
Yes
Summary description
Cisco AnyConnect Secure Mobility Client for Windows allows for incorrect handling of directory paths. An attacker with valid credentials on Windows would be able to copy malicious files to arbitrary locations with system level privileges. This could include DLL pre-loading, DLL hijacking, and other related attacks.
Required action
Apply updates per vendor instructions.
Notes
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-win-path-traverse-qO4HWBsj; https://nvd.nist.gov/vuln/detail/CVE-2020-3153