Main Vulnerability Database Vulnerabilities #VU54177

#VU54177 Insecure DLL loading in Cisco AnyConnect Secure Mobility Client - CVE-2021-1567

Published: June 16, 2021

Vulnerability identifier: #VU54177

Vulnerability risk: Low

CVSSv4.0: CVSS:4.0/AV:L/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: CVE-2021-1567

CWE-ID: CWE-427

Exploitation vector: Local access

Exploit availability: No public exploit available

Vulnerable software:
Cisco AnyConnect Secure Mobility Client

Software vendor:
Cisco Systems, Inc

Description

The vulnerability allows a local user to escalate privileges on the system.

The vulnerability exists due to the application loads DLL libraries in an insecure manner. A local user can place a specially crafted .dll file on system, if the VPN Posture (HostScan) Module is installed on the AnyConnect client, and execute arbitrary code with SYSTEM privileges.

The vulnerability affects Cisco AnyConnect Secure Mobility Client for Windows.

Remediation

Install updates from vendor's website.

#VU54177 Insecure DLL loading in Cisco AnyConnect Secure Mobility Client - CVE-2021-1567

Description

Remediation

External links

Please verify you're human