Certificate Management Vulnerability in Cisco AnyConnect Products

CVE-2018-0334

Summary

A security vulnerability exists in the certificate management subsystem of Cisco AnyConnect Network Access Manager and Secure Mobility Client across multiple platforms. This flaw could be leveraged by an unauthenticated, remote attacker to bypass TLS certificate verification during the download process of specific configuration files. The exploitation is facilitated by improper implementation of the Simple Certificate Enrollment Protocol and inadequate validation of server certificates. Attackers capable of exploiting this vulnerability could alter sensitive configuration profiles, certificates, or localization data utilized by the AnyConnect Secure Mobility Client.

References