Privilege Escalation in Cisco AnyConnect Secure Mobility Client Software for Windows
CVE-2023-20178
Key Information:
- Vendor
- Cisco
- Status
- Vendor
- CVE Published:
- 28 June 2023
Badges
Summary
A vulnerability exists in the client update process of the Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows. This flaw arises from improper permissions assigned to a temporary directory created during the update process. As a result, a low-privileged, authenticated local attacker could exploit this vulnerability to elevate their privileges to those of the SYSTEM user, thereby allowing for unauthorized code execution with elevated privileges after a successful VPN connection is established. This exploitation utilizes a specific function of the Windows installer process.
Affected Version(s)
Cisco Secure Client 4.9.00086
Cisco Secure Client 4.9.01095
Cisco Secure Client 4.9.02028
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.
Get notified when SecurityVulnerability.io launches alerting ๐
Well keep you posted ๐ง
News Articles
Help Net SecurityCVE-2023-20178PoC exploit released for Cisco AnyConnect, Secure Client vulnerability (CVE-2023-20178) - Help Net Security
PoC exploit code for CVE-2023-20178 in the client update process of Cisco AnyConnect and Cisco Secure Client has been published.
2 years ago
References
CVSS V3.1
Timeline
Vulnerability published
- ๐ฐ
First article discovered by Help Net Security
- ๐ก
Public PoC available
- ๐พ
Exploit known to exist
Vulnerability Reserved