VDB

CVE-2023-20178

CVE-2023-20178 PUBLISHED CVSS 7.800000190734863 HIGH

A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows could allow a low-privileged, authenticated, local attacker to elevate privileges to those of SYSTEM. The client update process is executed after a successful VPN connection is established. This vulnerability exists because improper permissions are assigned to a temporary directory that is created during the update process. An attacker could exploit this vulnerability by abusing a specific function of the Windows installer process. A successful exploit could allow the attacker to execute code with SYSTEM privileges.

EPSS 27.74% · 96.5th percentile

Risk Scores

CVSS 3.1
7.800000190734863
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
27.74%
96.5th percentile

Affected Products

VendorProductVersions
ciscosecure_client0
CiscoCisco Secure Client4.9.04043, 4.9.00086, 4.9.01095
ciscoanyconnect_secure_mobility_client0

Exploit Intelligence

…and 6 more exploits

Timeline

  • Jun 8, 2023 CVE Published
  • Jun 8, 2023 PoC Published
  • Jun 22, 2023 PoC Published
  • Jun 29, 2023 EPSS Score
  • Aug 3, 2023 EPSS Score
  • Oct 12, 2023 EPSS Score
  • Nov 16, 2023 EPSS Score
  • Jan 25, 2024 EPSS Score
  • Feb 29, 2024 EPSS Score
  • May 9, 2024 EPSS Score
  • Jun 13, 2024 EPSS Score
  • Aug 22, 2024 EPSS Score

References

Open in Interactive Console →
$ Console Community · 100/wk Open console ›