N/A

A vulnerability in the SAML authentication process of Cisco Secure Client could allow an unauthenticated, remote attacker to conduct a carriage return line feed (CRLF) injection attack against a user. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by persuading a user to click a crafted link while establishing a VPN session. A successful exploit could allow the attacker to execute arbitrary script code in the browser or access sensitive, browser-based information, including a valid SAML token. The attacker could then use the token to establish a remote access VPN session with the privileges of the affected user. Individual hosts and services behind the VPN headend would still need additional credentials for successful access.

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:L/A:N

对CRLF序列的转义处理不恰当(CRLF注入)

Cisco Secure Client 安全漏洞

Cisco Secure Client是美国思科（Cisco）公司的一个用于连接虚拟专用网络的软件。 Cisco Secure Client 存在安全漏洞，该漏洞源于对用户提供的输入验证不足。可能允许未经身份验证的远程攻击者对用户进行回车换行 (CRLF) 注入攻击。

N/A

N/A