Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The IPC channel in Cisco AnyConnect Secure Mobility Client 2.0.0343 through 4.1(8) allows local users to bypass intended access restrictions and move arbitrary files by leveraging the lack of source-path validation, aka Bug ID CSCuv48563.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco AnyConnect Secure Mobility Client IPC通道权限许可和访问控制漏洞
Vulnerability Description
Cisco AnyConnect Secure Mobility Client是美国思科(Cisco)公司的一款可通过任何设备安全访问网络和应用的安全移动客户端。 Cisco AnyConnect Secure Mobility Client 2.0.0343版本至4.1(8)版本的IPC通道存在安全漏洞,该漏洞源于程序没有验证IPC命令中的源路径。本地攻击者可利用该漏洞绕过既定的访问限制,移动任意文件。
CVSS Information
N/A
Vulnerability Type
N/A