VDB

CVE-2021-1567

CVE-2021-1567 PUBLISHED CVSS 7 HIGH

A vulnerability in the DLL loading mechanism of Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack on an affected device if the VPN Posture (HostScan) Module is installed on the AnyConnect client. This vulnerability is due to a race condition in the signature verification process for DLL files that are loaded on an affected device. An attacker could exploit this vulnerability by sending a series of crafted interprocess communication (IPC) messages to the AnyConnect process. A successful exploit could allow the attacker to execute arbitrary code on the affected device with SYSTEM privileges. To exploit this vulnerability, the attacker must have valid credentials on the Windows system.

EPSS 0.04% · 12.2th percentile

Risk Scores

CVSS 3.1
7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
0.04%
12.2th percentile

Affected Products

VendorProductVersions
ciscoanyconnect_secure_mobility_client0
CiscoCisco AnyConnect Secure Mobility Client*

Exploit Intelligence

Timeline

  • Jun 16, 2021 CVE Published
  • Jun 17, 2021 EPSS Score
  • Aug 18, 2021 EPSS Score
  • Oct 17, 2021 EPSS Score
  • Dec 17, 2021 EPSS Score
  • Feb 4, 2022 EPSS Score
  • Feb 15, 2022 EPSS Score
  • Apr 1, 2022 EPSS Score
  • Apr 17, 2022 EPSS Score
  • Jun 16, 2022 EPSS Score
  • Aug 17, 2022 EPSS Score
  • Oct 16, 2022 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›