cvelistv5 - cve-2023-20241

CVE-2023-20241 (GCVE-0-2023-20241)

Vulnerability from cvelistv5 – Published: 2023-11-22 17:10 – Updated: 2025-06-05 14:23

Summary

Severity ?

5.5 (Medium)


                        
                          CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

CWE

CWE-125 - Out-of-bounds Read

Assigner

cisco

References

URL

Tags

https://sec.cloudapps.cisco.com/security/center/c…

Impacted products

	Vendor	Product	Version
	Cisco	Cisco Secure Client	Affected: 4.9.00086 Affected: 4.9.01095 Affected: 4.9.02028 Affected: 4.9.03047 Affected: 4.9.03049 Affected: 4.9.04043 Affected: 4.9.04053 Affected: 4.9.05042 Affected: 4.9.06037 Affected: 4.10.00093 Affected: 4.10.01075 Affected: 4.10.02086 Affected: 4.10.03104 Affected: 4.10.04065 Affected: 4.10.04071 Affected: 4.10.05085 Affected: 4.10.05095 Affected: 4.10.05111 Affected: 4.10.06079 Affected: 4.10.06090 Affected: 4.10.07061 Affected: 4.10.07062 Affected: 4.10.07073 Affected: 5.0.00238 Affected: 5.0.00529 Affected: 5.0.00556 Affected: 5.0.01242 Affected: 5.0.02075 Affected: 5.0.03072 Affected: 5.0.03076 Affected: 5.0.04032

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-02T09:05:35.856Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "cisco-sa-accsc-dos-9SLzkZ8",
            "tags": [
              "x_transferred"
            ],
            "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
          }
        ],
        "title": "CVE Program Container"
      },
      {
        "metrics": [
          {
            "other": {
              "content": {
                "id": "CVE-2023-20241",
                "options": [
                  {
                    "Exploitation": "none"
                  },
                  {
                    "Automatable": "no"
                  },
                  {
                    "Technical Impact": "partial"
                  }
                ],
                "role": "CISA Coordinator",
                "timestamp": "2025-06-05T14:22:24.777282Z",
                "version": "2.0.3"
              },
              "type": "ssvc"
            }
          }
        ],
        "providerMetadata": {
          "dateUpdated": "2025-06-05T14:23:54.423Z",
          "orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
          "shortName": "CISA-ADP"
        },
        "title": "CISA ADP Vulnrichment"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Secure Client",
          "vendor": "Cisco",
          "versions": [
            {
              "status": "affected",
              "version": "4.9.00086"
            },
            {
              "status": "affected",
              "version": "4.9.01095"
            },
            {
              "status": "affected",
              "version": "4.9.02028"
            },
            {
              "status": "affected",
              "version": "4.9.03047"
            },
            {
              "status": "affected",
              "version": "4.9.03049"
            },
            {
              "status": "affected",
              "version": "4.9.04043"
            },
            {
              "status": "affected",
              "version": "4.9.04053"
            },
            {
              "status": "affected",
              "version": "4.9.05042"
            },
            {
              "status": "affected",
              "version": "4.9.06037"
            },
            {
              "status": "affected",
              "version": "4.10.00093"
            },
            {
              "status": "affected",
              "version": "4.10.01075"
            },
            {
              "status": "affected",
              "version": "4.10.02086"
            },
            {
              "status": "affected",
              "version": "4.10.03104"
            },
            {
              "status": "affected",
              "version": "4.10.04065"
            },
            {
              "status": "affected",
              "version": "4.10.04071"
            },
            {
              "status": "affected",
              "version": "4.10.05085"
            },
            {
              "status": "affected",
              "version": "4.10.05095"
            },
            {
              "status": "affected",
              "version": "4.10.05111"
            },
            {
              "status": "affected",
              "version": "4.10.06079"
            },
            {
              "status": "affected",
              "version": "4.10.06090"
            },
            {
              "status": "affected",
              "version": "4.10.07061"
            },
            {
              "status": "affected",
              "version": "4.10.07062"
            },
            {
              "status": "affected",
              "version": "4.10.07073"
            },
            {
              "status": "affected",
              "version": "5.0.00238"
            },
            {
              "status": "affected",
              "version": "5.0.00529"
            },
            {
              "status": "affected",
              "version": "5.0.00556"
            },
            {
              "status": "affected",
              "version": "5.0.01242"
            },
            {
              "status": "affected",
              "version": "5.0.02075"
            },
            {
              "status": "affected",
              "version": "5.0.03072"
            },
            {
              "status": "affected",
              "version": "5.0.03076"
            },
            {
              "status": "affected",
              "version": "5.0.04032"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\r\n\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system."
        }
      ],
      "exploits": [
        {
          "lang": "en",
          "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
        }
      ],
      "metrics": [
        {
          "cvssV3_1": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "format": "cvssV3_1"
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-125",
              "description": "Out-of-bounds Read",
              "lang": "en",
              "type": "cwe"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2024-01-25T16:58:29.398Z",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "cisco-sa-accsc-dos-9SLzkZ8",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
        }
      ],
      "source": {
        "advisory": "cisco-sa-accsc-dos-9SLzkZ8",
        "defects": [
          "CSCwf92553"
        ],
        "discovery": "INTERNAL"
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2023-20241",
    "datePublished": "2023-11-22T17:10:45.694Z",
    "dateReserved": "2022-10-27T18:47:50.370Z",
    "dateUpdated": "2025-06-05T14:23:54.423Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.00086:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"03B6618B-2E98-480C-AF79-2A9E9BF29CB3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.01095:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F2CB76BE-7DD7-40D7-A7C7-DDA7079A286F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.02028:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C87CEF61-99F2-4845-9FDE-4B6ED62637C3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03047:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EA80A4E4-061E-4578-B780-9540AE502E66\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03049:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"804366C1-F307-4DC2-9FEA-B4EB60790A32\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04043:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5AD3244A-5CA8-496C-B189-BCD31B0E40C8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04053:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EAB00A32-8571-4685-B448-690F8EE373D9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.05042:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F97CC9FF-FDD3-46A1-9025-BAA83160A504\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.06037:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FF8E83C4-9C5A-4D84-AB19-A4564BBB6625\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.00093:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FDBC52F-F851-4DC4-9DED-45F8689F2A00\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.01075:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C6D74511-0444-473C-96F7-751C2B9A6ADC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.02086:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D89BE767-38C2-4E92-83EB-09E23B48AAF8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.03104:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DC77CA23-5750-4E35-AD17-4FE0B351ECFD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.04065:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CDE66231-01C3-4807-AB7B-F2A3C2E2200D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.04071:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B003756D-7F3D-4FB9-B3EF-CEAA68334630\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.05085:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B06F4BD8-23D2-4C32-B090-F33D50BB5805\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.05095:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1EE93BD0-7AAD-4921-A6F1-22F1905F8870\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.05111:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"222718F2-81E9-40BD-8B2D-ECD70CC423E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.06079:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C1150AC7-8E86-471E-87DD-F4C0D0628261\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.06090:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"585A3B8E-8FD1-4B01-9F82-1038BF50A0FB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.07061:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"61D0138A-EE54-420B-A11B-4580DD130FBF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.07062:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D45B8E46-AE9E-44F6-B58E-5AF7A32D499B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:4.10.07073:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FAB896B8-535A-494F-AA21-3DA56CD7A540\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.00238:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"7B7B74D9-7D43-48B2-AE6F-4FE75DB1DF61\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.00529:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"86B5EB44-F814-49AB-BAD2-3E02E9707377\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.00556:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C33CF946-24CD-471E-8448-445E629789BD\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.01242:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9E39EE52-4A48-430E-A7A5-29276EE51B03\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.02075:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"781CEBDC-3A42-47BA-8509-E35AB6BB56C6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.03072:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ADF3D714-0475-4E30-8245-159C5BA68F11\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:secure_client:5.0.03076:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA2D666F-5EBF-41B7-89C1-32BCF65DABEC\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\\r\\n\\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.\"}, {\"lang\": \"es\", \"value\": \"M\\u00faltiples vulnerabilidades en Cisco Secure Client Software, anteriormente AnyConnect Secure Mobility Client, podr\\u00edan permitir que un atacante local autenticado cause una condici\\u00f3n de denegaci\\u00f3n de servicio (DoS) en un sistema afectado. Estas vulnerabilidades se deben a una lectura de memoria fuera de los l\\u00edmites de Cisco Secure Client Software. Un atacante podr\\u00eda aprovechar estas vulnerabilidades iniciando sesi\\u00f3n en un dispositivo afectado al mismo tiempo que otro usuario accede a Cisco Secure Client en el mismo sistema y luego enviando paquetes manipulados a un puerto en ese host local. Un exploit exitoso podr\\u00eda permitir al atacante bloquear el servicio del Agente VPN, provocando que no est\\u00e9 disponible para todos los usuarios del sistema. Para explotar estas vulnerabilidades, el atacante debe tener credenciales v\\u00e1lidas en un sistema multiusuario.\"}]",
      "id": "CVE-2023-20241",
      "lastModified": "2024-11-21T07:40:58.370",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 1.8, \"impactScore\": 3.6}]}",
      "published": "2023-11-22T17:15:18.740",
      "references": "[{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}, {\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Issue Tracking\", \"Vendor Advisory\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-125\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2023-20241\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2023-11-22T17:15:18.740\",\"lastModified\":\"2024-11-21T07:40:58.370\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\\r\\n\\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.\"},{\"lang\":\"es\",\"value\":\"M\u00faltiples vulnerabilidades en Cisco Secure Client Software, anteriormente AnyConnect Secure Mobility Client, podr\u00edan permitir que un atacante local autenticado cause una condici\u00f3n de denegaci\u00f3n de servicio (DoS) en un sistema afectado. Estas vulnerabilidades se deben a una lectura de memoria fuera de los l\u00edmites de Cisco Secure Client Software. Un atacante podr\u00eda aprovechar estas vulnerabilidades iniciando sesi\u00f3n en un dispositivo afectado al mismo tiempo que otro usuario accede a Cisco Secure Client en el mismo sistema y luego enviando paquetes manipulados a un puerto en ese host local. Un exploit exitoso podr\u00eda permitir al atacante bloquear el servicio del Agente VPN, provocando que no est\u00e9 disponible para todos los usuarios del sistema. Para explotar estas vulnerabilidades, el atacante debe tener credenciales v\u00e1lidas en un sistema multiusuario.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":5.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":3.6}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-125\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.00086:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03B6618B-2E98-480C-AF79-2A9E9BF29CB3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.01095:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F2CB76BE-7DD7-40D7-A7C7-DDA7079A286F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.02028:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C87CEF61-99F2-4845-9FDE-4B6ED62637C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03047:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA80A4E4-061E-4578-B780-9540AE502E66\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03049:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"804366C1-F307-4DC2-9FEA-B4EB60790A32\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04043:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AD3244A-5CA8-496C-B189-BCD31B0E40C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04053:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EAB00A32-8571-4685-B448-690F8EE373D9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.05042:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F97CC9FF-FDD3-46A1-9025-BAA83160A504\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.06037:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF8E83C4-9C5A-4D84-AB19-A4564BBB6625\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.00093:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FDBC52F-F851-4DC4-9DED-45F8689F2A00\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.01075:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C6D74511-0444-473C-96F7-751C2B9A6ADC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.02086:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D89BE767-38C2-4E92-83EB-09E23B48AAF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.03104:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DC77CA23-5750-4E35-AD17-4FE0B351ECFD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.04065:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CDE66231-01C3-4807-AB7B-F2A3C2E2200D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.04071:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B003756D-7F3D-4FB9-B3EF-CEAA68334630\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.05085:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B06F4BD8-23D2-4C32-B090-F33D50BB5805\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.05095:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EE93BD0-7AAD-4921-A6F1-22F1905F8870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.05111:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"222718F2-81E9-40BD-8B2D-ECD70CC423E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.06079:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1150AC7-8E86-471E-87DD-F4C0D0628261\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.06090:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"585A3B8E-8FD1-4B01-9F82-1038BF50A0FB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.07061:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"61D0138A-EE54-420B-A11B-4580DD130FBF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.07062:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D45B8E46-AE9E-44F6-B58E-5AF7A32D499B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:4.10.07073:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FAB896B8-535A-494F-AA21-3DA56CD7A540\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.00238:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7B7B74D9-7D43-48B2-AE6F-4FE75DB1DF61\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.00529:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86B5EB44-F814-49AB-BAD2-3E02E9707377\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.00556:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C33CF946-24CD-471E-8448-445E629789BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.01242:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E39EE52-4A48-430E-A7A5-29276EE51B03\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.02075:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"781CEBDC-3A42-47BA-8509-E35AB6BB56C6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.03072:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ADF3D714-0475-4E30-8245-159C5BA68F11\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:secure_client:5.0.03076:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA2D666F-5EBF-41B7-89C1-32BCF65DABEC\"}]}]}],\"references\":[{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]},{\"url\":\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Vendor Advisory\"]}]}}",
    "vulnrichment": {
      "containers": "{\"cna\": {\"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2024-01-25T16:58:29.398Z\"}, \"descriptions\": [{\"lang\": \"en\", \"value\": \"Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\\r\\n\\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.\"}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco Secure Client\", \"versions\": [{\"version\": \"4.9.00086\", \"status\": \"affected\"}, {\"version\": \"4.9.01095\", \"status\": \"affected\"}, {\"version\": \"4.9.02028\", \"status\": \"affected\"}, {\"version\": \"4.9.03047\", \"status\": \"affected\"}, {\"version\": \"4.9.03049\", \"status\": \"affected\"}, {\"version\": \"4.9.04043\", \"status\": \"affected\"}, {\"version\": \"4.9.04053\", \"status\": \"affected\"}, {\"version\": \"4.9.05042\", \"status\": \"affected\"}, {\"version\": \"4.9.06037\", \"status\": \"affected\"}, {\"version\": \"4.10.00093\", \"status\": \"affected\"}, {\"version\": \"4.10.01075\", \"status\": \"affected\"}, {\"version\": \"4.10.02086\", \"status\": \"affected\"}, {\"version\": \"4.10.03104\", \"status\": \"affected\"}, {\"version\": \"4.10.04065\", \"status\": \"affected\"}, {\"version\": \"4.10.04071\", \"status\": \"affected\"}, {\"version\": \"4.10.05085\", \"status\": \"affected\"}, {\"version\": \"4.10.05095\", \"status\": \"affected\"}, {\"version\": \"4.10.05111\", \"status\": \"affected\"}, {\"version\": \"4.10.06079\", \"status\": \"affected\"}, {\"version\": \"4.10.06090\", \"status\": \"affected\"}, {\"version\": \"4.10.07061\", \"status\": \"affected\"}, {\"version\": \"4.10.07062\", \"status\": \"affected\"}, {\"version\": \"4.10.07073\", \"status\": \"affected\"}, {\"version\": \"5.0.00238\", \"status\": \"affected\"}, {\"version\": \"5.0.00529\", \"status\": \"affected\"}, {\"version\": \"5.0.00556\", \"status\": \"affected\"}, {\"version\": \"5.0.01242\", \"status\": \"affected\"}, {\"version\": \"5.0.02075\", \"status\": \"affected\"}, {\"version\": \"5.0.03072\", \"status\": \"affected\"}, {\"version\": \"5.0.03076\", \"status\": \"affected\"}, {\"version\": \"5.0.04032\", \"status\": \"affected\"}]}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"description\": \"Out-of-bounds Read\", \"type\": \"cwe\", \"cweId\": \"CWE-125\"}]}], \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8\", \"name\": \"cisco-sa-accsc-dos-9SLzkZ8\"}], \"metrics\": [{\"format\": \"cvssV3_1\", \"cvssV3_1\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 5.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"LOCAL\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"LOW\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.\"}], \"source\": {\"advisory\": \"cisco-sa-accsc-dos-9SLzkZ8\", \"discovery\": \"INTERNAL\", \"defects\": [\"CSCwf92553\"]}}, \"adp\": [{\"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-02T09:05:35.856Z\"}, \"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8\", \"name\": \"cisco-sa-accsc-dos-9SLzkZ8\", \"tags\": [\"x_transferred\"]}]}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2023-20241\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"no\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2025-06-05T14:22:24.777282Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2025-06-05T14:23:46.562Z\"}}]}",
      "cveMetadata": "{\"cveId\": \"CVE-2023-20241\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"state\": \"PUBLISHED\", \"assignerShortName\": \"cisco\", \"dateReserved\": \"2022-10-27T18:47:50.370Z\", \"datePublished\": \"2023-11-22T17:10:45.694Z\", \"dateUpdated\": \"2025-06-05T14:23:54.423Z\"}",
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }
  }
}

FKIE_CVE-2023-20241

Vulnerability from fkie_nvd - Published: 2023-11-22 17:15 - Updated: 2024-11-21 07:40

Severity ?

5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
5.5 (Medium) - CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Summary

References

	URL	Tags
	psirt@cisco.com	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8	Issue Tracking, Vendor Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8	Issue Tracking, Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	anyconnect_secure_mobility_client	4.9.00086
cisco	anyconnect_secure_mobility_client	4.9.01095
cisco	anyconnect_secure_mobility_client	4.9.02028
cisco	anyconnect_secure_mobility_client	4.9.03047
cisco	anyconnect_secure_mobility_client	4.9.03049
cisco	anyconnect_secure_mobility_client	4.9.04043
cisco	anyconnect_secure_mobility_client	4.9.04053
cisco	anyconnect_secure_mobility_client	4.9.05042
cisco	anyconnect_secure_mobility_client	4.9.06037
cisco	secure_client	4.10.00093
cisco	secure_client	4.10.01075
cisco	secure_client	4.10.02086
cisco	secure_client	4.10.03104
cisco	secure_client	4.10.04065
cisco	secure_client	4.10.04071
cisco	secure_client	4.10.05085
cisco	secure_client	4.10.05095
cisco	secure_client	4.10.05111
cisco	secure_client	4.10.06079
cisco	secure_client	4.10.06090
cisco	secure_client	4.10.07061
cisco	secure_client	4.10.07062
cisco	secure_client	4.10.07073
cisco	secure_client	5.0.00238
cisco	secure_client	5.0.00529
cisco	secure_client	5.0.00556
cisco	secure_client	5.0.01242
cisco	secure_client	5.0.02075
cisco	secure_client	5.0.03072
cisco	secure_client	5.0.03076

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.00086:*:*:*:*:*:*:*",
              "matchCriteriaId": "03B6618B-2E98-480C-AF79-2A9E9BF29CB3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.01095:*:*:*:*:*:*:*",
              "matchCriteriaId": "F2CB76BE-7DD7-40D7-A7C7-DDA7079A286F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.02028:*:*:*:*:*:*:*",
              "matchCriteriaId": "C87CEF61-99F2-4845-9FDE-4B6ED62637C3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03047:*:*:*:*:*:*:*",
              "matchCriteriaId": "EA80A4E4-061E-4578-B780-9540AE502E66",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03049:*:*:*:*:*:*:*",
              "matchCriteriaId": "804366C1-F307-4DC2-9FEA-B4EB60790A32",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04043:*:*:*:*:*:*:*",
              "matchCriteriaId": "5AD3244A-5CA8-496C-B189-BCD31B0E40C8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04053:*:*:*:*:*:*:*",
              "matchCriteriaId": "EAB00A32-8571-4685-B448-690F8EE373D9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.05042:*:*:*:*:*:*:*",
              "matchCriteriaId": "F97CC9FF-FDD3-46A1-9025-BAA83160A504",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.06037:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF8E83C4-9C5A-4D84-AB19-A4564BBB6625",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.00093:*:*:*:*:*:*:*",
              "matchCriteriaId": "8FDBC52F-F851-4DC4-9DED-45F8689F2A00",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.01075:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6D74511-0444-473C-96F7-751C2B9A6ADC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.02086:*:*:*:*:*:*:*",
              "matchCriteriaId": "D89BE767-38C2-4E92-83EB-09E23B48AAF8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.03104:*:*:*:*:*:*:*",
              "matchCriteriaId": "DC77CA23-5750-4E35-AD17-4FE0B351ECFD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.04065:*:*:*:*:*:*:*",
              "matchCriteriaId": "CDE66231-01C3-4807-AB7B-F2A3C2E2200D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.04071:*:*:*:*:*:*:*",
              "matchCriteriaId": "B003756D-7F3D-4FB9-B3EF-CEAA68334630",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.05085:*:*:*:*:*:*:*",
              "matchCriteriaId": "B06F4BD8-23D2-4C32-B090-F33D50BB5805",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.05095:*:*:*:*:*:*:*",
              "matchCriteriaId": "1EE93BD0-7AAD-4921-A6F1-22F1905F8870",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.05111:*:*:*:*:*:*:*",
              "matchCriteriaId": "222718F2-81E9-40BD-8B2D-ECD70CC423E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.06079:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1150AC7-8E86-471E-87DD-F4C0D0628261",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.06090:*:*:*:*:*:*:*",
              "matchCriteriaId": "585A3B8E-8FD1-4B01-9F82-1038BF50A0FB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.07061:*:*:*:*:*:*:*",
              "matchCriteriaId": "61D0138A-EE54-420B-A11B-4580DD130FBF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.07062:*:*:*:*:*:*:*",
              "matchCriteriaId": "D45B8E46-AE9E-44F6-B58E-5AF7A32D499B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:4.10.07073:*:*:*:*:*:*:*",
              "matchCriteriaId": "FAB896B8-535A-494F-AA21-3DA56CD7A540",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.00238:*:*:*:*:*:*:*",
              "matchCriteriaId": "7B7B74D9-7D43-48B2-AE6F-4FE75DB1DF61",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.00529:*:*:*:*:*:*:*",
              "matchCriteriaId": "86B5EB44-F814-49AB-BAD2-3E02E9707377",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.00556:*:*:*:*:*:*:*",
              "matchCriteriaId": "C33CF946-24CD-471E-8448-445E629789BD",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.01242:*:*:*:*:*:*:*",
              "matchCriteriaId": "9E39EE52-4A48-430E-A7A5-29276EE51B03",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.02075:*:*:*:*:*:*:*",
              "matchCriteriaId": "781CEBDC-3A42-47BA-8509-E35AB6BB56C6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.03072:*:*:*:*:*:*:*",
              "matchCriteriaId": "ADF3D714-0475-4E30-8245-159C5BA68F11",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:secure_client:5.0.03076:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA2D666F-5EBF-41B7-89C1-32BCF65DABEC",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\r\n\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system."
    },
    {
      "lang": "es",
      "value": "M\u00faltiples vulnerabilidades en Cisco Secure Client Software, anteriormente AnyConnect Secure Mobility Client, podr\u00edan permitir que un atacante local autenticado cause una condici\u00f3n de denegaci\u00f3n de servicio (DoS) en un sistema afectado. Estas vulnerabilidades se deben a una lectura de memoria fuera de los l\u00edmites de Cisco Secure Client Software. Un atacante podr\u00eda aprovechar estas vulnerabilidades iniciando sesi\u00f3n en un dispositivo afectado al mismo tiempo que otro usuario accede a Cisco Secure Client en el mismo sistema y luego enviando paquetes manipulados a un puerto en ese host local. Un exploit exitoso podr\u00eda permitir al atacante bloquear el servicio del Agente VPN, provocando que no est\u00e9 disponible para todos los usuarios del sistema. Para explotar estas vulnerabilidades, el atacante debe tener credenciales v\u00e1lidas en un sistema multiusuario."
    }
  ],
  "id": "CVE-2023-20241",
  "lastModified": "2024-11-21T07:40:58.370",
  "metrics": {
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "psirt@cisco.com",
        "type": "Secondary"
      },
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 5.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2023-11-22T17:15:18.740",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Issue Tracking",
        "Vendor Advisory"
      ],
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Vendor Advisory"
      ],
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-125"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-23QX-PFMX-49J9

Vulnerability from github – Published: 2023-11-22 18:30 – Updated: 2023-11-22 18:30

Details

These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.

Severity ?

5.5 (Medium)


                  
                    CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2023-20241"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-125"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2023-11-22T17:15:18Z",
    "severity": "MODERATE"
  },
  "details": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\n\n These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.",
  "id": "GHSA-23qx-pfmx-49j9",
  "modified": "2023-11-22T18:30:57Z",
  "published": "2023-11-22T18:30:57Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-20241"
    },
    {
      "type": "WEB",
      "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

GSD-2023-20241

Vulnerability from gsd - Updated: 2023-12-13 01:20

Details

Aliases

CVE-2023-20241

Aliases

CVE-2023-20241

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2023-20241",
    "id": "GSD-2023-20241"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2023-20241"
      ],
      "details": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\r\n\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.",
      "id": "GSD-2023-20241",
      "modified": "2023-12-13T01:20:29.457120Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2023-20241",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Cisco Secure Client",
                    "version": {
                      "version_data": [
                        {
                          "version_affected": "=",
                          "version_value": "4.9.00086"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.01095"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.02028"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.03047"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.03049"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.04043"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.04053"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.05042"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.9.06037"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.00093"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.01075"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.02086"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.03104"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.04065"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.04071"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.05085"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.05095"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.05111"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.06079"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.06090"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.07061"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.07062"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "4.10.07073"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.00238"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.00529"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.00556"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.01242"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.02075"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.03072"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.03076"
                        },
                        {
                          "version_affected": "=",
                          "version_value": "5.0.04032"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Cisco"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\r\n\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system."
          }
        ]
      },
      "exploit": [
        {
          "lang": "en",
          "value": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
        }
      ],
      "impact": {
        "cvss": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "cweId": "CWE-125",
                "lang": "eng",
                "value": "Out-of-bounds Read"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8",
            "refsource": "MISC",
            "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
          }
        ]
      },
      "source": {
        "advisory": "cisco-sa-accsc-dos-9SLzkZ8",
        "defects": [
          "CSCwf92553"
        ],
        "discovery": "INTERNAL"
      }
    },
    "nvd.nist.gov": {
      "cve": {
        "configurations": [
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.00086:*:*:*:*:*:*:*",
                    "matchCriteriaId": "03B6618B-2E98-480C-AF79-2A9E9BF29CB3",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.01095:*:*:*:*:*:*:*",
                    "matchCriteriaId": "F2CB76BE-7DD7-40D7-A7C7-DDA7079A286F",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.02028:*:*:*:*:*:*:*",
                    "matchCriteriaId": "C87CEF61-99F2-4845-9FDE-4B6ED62637C3",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03047:*:*:*:*:*:*:*",
                    "matchCriteriaId": "EA80A4E4-061E-4578-B780-9540AE502E66",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.03049:*:*:*:*:*:*:*",
                    "matchCriteriaId": "804366C1-F307-4DC2-9FEA-B4EB60790A32",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04043:*:*:*:*:*:*:*",
                    "matchCriteriaId": "5AD3244A-5CA8-496C-B189-BCD31B0E40C8",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.04053:*:*:*:*:*:*:*",
                    "matchCriteriaId": "EAB00A32-8571-4685-B448-690F8EE373D9",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.05042:*:*:*:*:*:*:*",
                    "matchCriteriaId": "F97CC9FF-FDD3-46A1-9025-BAA83160A504",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:anyconnect_secure_mobility_client:4.9.06037:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FF8E83C4-9C5A-4D84-AB19-A4564BBB6625",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          },
          {
            "nodes": [
              {
                "cpeMatch": [
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.00093:*:*:*:*:*:*:*",
                    "matchCriteriaId": "8FDBC52F-F851-4DC4-9DED-45F8689F2A00",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.01075:*:*:*:*:*:*:*",
                    "matchCriteriaId": "C6D74511-0444-473C-96F7-751C2B9A6ADC",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.02086:*:*:*:*:*:*:*",
                    "matchCriteriaId": "D89BE767-38C2-4E92-83EB-09E23B48AAF8",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.03104:*:*:*:*:*:*:*",
                    "matchCriteriaId": "DC77CA23-5750-4E35-AD17-4FE0B351ECFD",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.04065:*:*:*:*:*:*:*",
                    "matchCriteriaId": "CDE66231-01C3-4807-AB7B-F2A3C2E2200D",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.04071:*:*:*:*:*:*:*",
                    "matchCriteriaId": "B003756D-7F3D-4FB9-B3EF-CEAA68334630",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.05085:*:*:*:*:*:*:*",
                    "matchCriteriaId": "B06F4BD8-23D2-4C32-B090-F33D50BB5805",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.05095:*:*:*:*:*:*:*",
                    "matchCriteriaId": "1EE93BD0-7AAD-4921-A6F1-22F1905F8870",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.05111:*:*:*:*:*:*:*",
                    "matchCriteriaId": "222718F2-81E9-40BD-8B2D-ECD70CC423E3",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.06079:*:*:*:*:*:*:*",
                    "matchCriteriaId": "C1150AC7-8E86-471E-87DD-F4C0D0628261",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.06090:*:*:*:*:*:*:*",
                    "matchCriteriaId": "585A3B8E-8FD1-4B01-9F82-1038BF50A0FB",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.07061:*:*:*:*:*:*:*",
                    "matchCriteriaId": "61D0138A-EE54-420B-A11B-4580DD130FBF",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.07062:*:*:*:*:*:*:*",
                    "matchCriteriaId": "D45B8E46-AE9E-44F6-B58E-5AF7A32D499B",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:4.10.07073:*:*:*:*:*:*:*",
                    "matchCriteriaId": "FAB896B8-535A-494F-AA21-3DA56CD7A540",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.00238:*:*:*:*:*:*:*",
                    "matchCriteriaId": "7B7B74D9-7D43-48B2-AE6F-4FE75DB1DF61",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.00529:*:*:*:*:*:*:*",
                    "matchCriteriaId": "86B5EB44-F814-49AB-BAD2-3E02E9707377",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.00556:*:*:*:*:*:*:*",
                    "matchCriteriaId": "C33CF946-24CD-471E-8448-445E629789BD",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.01242:*:*:*:*:*:*:*",
                    "matchCriteriaId": "9E39EE52-4A48-430E-A7A5-29276EE51B03",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.02075:*:*:*:*:*:*:*",
                    "matchCriteriaId": "781CEBDC-3A42-47BA-8509-E35AB6BB56C6",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.03072:*:*:*:*:*:*:*",
                    "matchCriteriaId": "ADF3D714-0475-4E30-8245-159C5BA68F11",
                    "vulnerable": true
                  },
                  {
                    "criteria": "cpe:2.3:a:cisco:secure_client:5.0.03076:*:*:*:*:*:*:*",
                    "matchCriteriaId": "BA2D666F-5EBF-41B7-89C1-32BCF65DABEC",
                    "vulnerable": true
                  }
                ],
                "negate": false,
                "operator": "OR"
              }
            ]
          }
        ],
        "descriptions": [
          {
            "lang": "en",
            "value": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\r\n\r These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system."
          },
          {
            "lang": "es",
            "value": "M\u00faltiples vulnerabilidades en Cisco Secure Client Software, anteriormente AnyConnect Secure Mobility Client, podr\u00edan permitir que un atacante local autenticado cause una condici\u00f3n de denegaci\u00f3n de servicio (DoS) en un sistema afectado. Estas vulnerabilidades se deben a una lectura de memoria fuera de los l\u00edmites de Cisco Secure Client Software. Un atacante podr\u00eda aprovechar estas vulnerabilidades iniciando sesi\u00f3n en un dispositivo afectado al mismo tiempo que otro usuario accede a Cisco Secure Client en el mismo sistema y luego enviando paquetes manipulados a un puerto en ese host local. Un exploit exitoso podr\u00eda permitir al atacante bloquear el servicio del Agente VPN, provocando que no est\u00e9 disponible para todos los usuarios del sistema. Para explotar estas vulnerabilidades, el atacante debe tener credenciales v\u00e1lidas en un sistema multiusuario."
          }
        ],
        "id": "CVE-2023-20241",
        "lastModified": "2024-01-25T17:15:40.280",
        "metrics": {
          "cvssMetricV31": [
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.8,
              "impactScore": 3.6,
              "source": "nvd@nist.gov",
              "type": "Primary"
            },
            {
              "cvssData": {
                "attackComplexity": "LOW",
                "attackVector": "LOCAL",
                "availabilityImpact": "HIGH",
                "baseScore": 5.5,
                "baseSeverity": "MEDIUM",
                "confidentialityImpact": "NONE",
                "integrityImpact": "NONE",
                "privilegesRequired": "LOW",
                "scope": "UNCHANGED",
                "userInteraction": "NONE",
                "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
                "version": "3.1"
              },
              "exploitabilityScore": 1.8,
              "impactScore": 3.6,
              "source": "ykramarz@cisco.com",
              "type": "Secondary"
            }
          ]
        },
        "published": "2023-11-22T17:15:18.740",
        "references": [
          {
            "source": "ykramarz@cisco.com",
            "tags": [
              "Issue Tracking",
              "Vendor Advisory"
            ],
            "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
          }
        ],
        "sourceIdentifier": "ykramarz@cisco.com",
        "vulnStatus": "Modified",
        "weaknesses": [
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-125"
              }
            ],
            "source": "nvd@nist.gov",
            "type": "Primary"
          },
          {
            "description": [
              {
                "lang": "en",
                "value": "CWE-125"
              }
            ],
            "source": "ykramarz@cisco.com",
            "type": "Secondary"
          }
        ]
      }
    }
  }
}

CISCO-SA-ACCSC-DOS-9SLZKZ8

Vulnerability from csaf_cisco - Published: 2023-11-15 16:00 - Updated: 2023-11-15 16:00

Summary

Cisco Secure Client Software Denial of Service Vulnerabilities

Notes

Summary

Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system. These vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system. Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities. Attention: Simplifying the Cisco portfolio includes the renaming of security products under one brand: Cisco Secure. For more information, see Meet Cisco Secure ["https://www.cisco.com/c/en/us/products/security/secure-names.html"].

Vulnerable Products

At the time of publication, these vulnerabilities affected the following Cisco products if they were running a vulnerable release of software: Secure Client AnyConnect for Android Secure Client AnyConnect VPN for iOS Secure Client (including AnyConnect) for Universal Windows Platform Secure Client for Linux Secure Client for MacOS For information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software ["#fs"] section of this advisory. See the Details section in the bug IDs at the top of this advisory for the most complete and current information.

Products Confirmed Not Vulnerable

Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by these vulnerabilities.

Workarounds

There are no workarounds that address these vulnerabilities.

Fixed Software

When considering software upgrades ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution. In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers. Fixed Releases At the time of publication, the release information in the following table was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information. The left column lists Cisco software releases, and the center and right columns indicate whether a release was affected by the vulnerabilities that are described in this advisory and which release included the fix for these vulnerabilities. Cisco Secure Client Software Release First Fixed Release for CSCwf21381 First Fixed Release for CSCwf92553 4.10 and earlier1 4.10 MR8 (Dec 2023) 4.10 MR8 (Dec 2023) 5.0 5.0 MR4 (5.0.04032) 5.0 MR5 (5.0.05040) 5.1 Not vulnerable Not vulnerable 1. Cisco Secure Client Software releases 4.10 and earlier were known as Cisco AnyConnect Secure Mobility Client. The Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.

Vulnerability Policy

To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.

Exploitation and Public Announcements

The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.

Source

These vulnerabilities were found during internal security testing.

Legal Disclaimer

THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME. A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.

JSON

To clipboard

{
  "document": {
    "acknowledgments": [
      {
        "summary": "These vulnerabilities were found during internal security testing."
      }
    ],
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "notes": [
      {
        "category": "summary",
        "text": "Multiple vulnerabilities in Cisco Secure Client Software, formerly AnyConnect Secure Mobility Client, could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected system.\r\n\r\nThese vulnerabilities are due to an out-of-bounds memory read from Cisco Secure Client Software. An attacker could exploit these vulnerabilities by logging in to an affected device at the same time that another user is accessing Cisco Secure Client on the same system, and then sending crafted packets to a port on that local host. A successful exploit could allow the attacker to crash the VPN Agent service, causing it to be unavailable to all users of the system. To exploit these vulnerabilities, the attacker must have valid credentials on a multi-user system.\r\n\r\nCisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.\r\n\r\n\r\n\r\nAttention: Simplifying the Cisco portfolio includes the renaming of security products under one brand: Cisco Secure. For more information, see Meet Cisco Secure [\"https://www.cisco.com/c/en/us/products/security/secure-names.html\"].",
        "title": "Summary"
      },
      {
        "category": "general",
        "text": "At the time of publication, these vulnerabilities affected the following Cisco products if they were running a vulnerable release of software:\r\n\r\nSecure Client AnyConnect for Android\r\nSecure Client AnyConnect VPN for iOS\r\nSecure Client (including AnyConnect) for Universal Windows Platform\r\nSecure Client for Linux\r\nSecure Client for MacOS\r\n\r\nFor information about which Cisco software releases were vulnerable at the time of publication, see the Fixed Software [\"#fs\"] section of this advisory. See the Details section in the bug IDs at the top of this advisory for the most complete and current information.",
        "title": "Vulnerable Products"
      },
      {
        "category": "general",
        "text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by these vulnerabilities.",
        "title": "Products Confirmed Not Vulnerable"
      },
      {
        "category": "general",
        "text": "There are no workarounds that address these vulnerabilities.",
        "title": "Workarounds"
      },
      {
        "category": "general",
        "text": "When considering software upgrades [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes\"], customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n      Fixed Releases\r\nAt the time of publication, the release information in the following table was accurate. See the Details section in the bug ID(s) at the top of this advisory for the most complete and current information.\r\n\r\nThe left column lists Cisco software releases, and the center and right columns indicate whether a release was affected by the vulnerabilities that are described in this advisory and which release included the fix for these vulnerabilities.\r\n        Cisco Secure Client Software Release  First Fixed Release for CSCwf21381  First Fixed Release for CSCwf92553          4.10 and earlier1  4.10 MR8 (Dec 2023)  4.10 MR8 (Dec 2023)      5.0  5.0 MR4 (5.0.04032)  5.0 MR5 (5.0.05040)      5.1  Not vulnerable  Not vulnerable\r\n1. Cisco Secure Client Software releases 4.10 and earlier were known as Cisco AnyConnect Secure Mobility Client.\r\nThe Cisco Product Security Incident Response Team (PSIRT) validates only the affected and fixed release information that is documented in this advisory.",
        "title": "Fixed Software"
      },
      {
        "category": "general",
        "text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
        "title": "Vulnerability Policy"
      },
      {
        "category": "general",
        "text": "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.",
        "title": "Exploitation and Public Announcements"
      },
      {
        "category": "general",
        "text": "These vulnerabilities were found during internal security testing.",
        "title": "Source"
      },
      {
        "category": "legal_disclaimer",
        "text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
        "title": "Legal Disclaimer"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "psirt@cisco.com",
      "issuing_authority": "Cisco PSIRT",
      "name": "Cisco",
      "namespace": "https://wwww.cisco.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "Cisco Secure Client Software Denial of Service Vulnerabilities",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
      },
      {
        "category": "external",
        "summary": "Cisco Security Vulnerability Policy",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
      },
      {
        "category": "external",
        "summary": "Meet Cisco Secure",
        "url": "https://www.cisco.com/c/en/us/products/security/secure-names.html"
      },
      {
        "category": "external",
        "summary": "considering software upgrades",
        "url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html#fixes"
      },
      {
        "category": "external",
        "summary": "Cisco Security Advisories page",
        "url": "https://www.cisco.com/go/psirt"
      },
      {
        "category": "external",
        "summary": "Security Vulnerability Policy",
        "url": "http://www.cisco.com/web/about/security/psirt/security_vulnerability_policy.html"
      }
    ],
    "title": "Cisco Secure Client Software Denial of Service Vulnerabilities",
    "tracking": {
      "current_release_date": "2023-11-15T16:00:00+00:00",
      "generator": {
        "date": "2024-05-10T23:28:19+00:00",
        "engine": {
          "name": "TVCE"
        }
      },
      "id": "cisco-sa-accsc-dos-9SLzkZ8",
      "initial_release_date": "2023-11-15T16:00:00+00:00",
      "revision_history": [
        {
          "date": "2023-11-15T15:54:38+00:00",
          "number": "1.0.0",
          "summary": "Initial public release."
        }
      ],
      "status": "final",
      "version": "1.0.0"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "category": "product_family",
            "name": "Cisco Secure Client",
            "product": {
              "name": "Cisco Secure Client ",
              "product_id": "CSAFPID-109810"
            }
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-20240",
      "ids": [
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwf21381"
        }
      ],
      "notes": [
        {
          "category": "other",
          "text": "Complete.",
          "title": "Affected Product Comprehensiveness"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-109810"
        ]
      },
      "release_date": "2023-11-15T16:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Cisco has released software updates that address this vulnerability.",
          "product_ids": [
            "CSAFPID-109810"
          ],
          "url": "https://software.cisco.com"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-109810"
          ]
        }
      ],
      "title": "Cisco Secure Client Denial of Service Vulnerability"
    },
    {
      "cve": "CVE-2023-20241",
      "ids": [
        {
          "system_name": "Cisco Bug ID",
          "text": "CSCwf92553"
        }
      ],
      "notes": [
        {
          "category": "other",
          "text": "Complete.",
          "title": "Affected Product Comprehensiveness"
        }
      ],
      "product_status": {
        "known_affected": [
          "CSAFPID-109810"
        ]
      },
      "release_date": "2023-11-15T16:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "details": "Cisco has released software updates that address this vulnerability.",
          "product_ids": [
            "CSAFPID-109810"
          ],
          "url": "https://software.cisco.com"
        }
      ],
      "scores": [
        {
          "cvss_v3": {
            "baseScore": 5.5,
            "baseSeverity": "MEDIUM",
            "vectorString": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.1"
          },
          "products": [
            "CSAFPID-109810"
          ]
        }
      ],
      "title": "Cisco Secure Client Denial of Service Vulnerability"
    }
  ]
}

WID-SEC-W-2023-2931

Vulnerability from csaf_certbund - Published: 2023-11-15 23:00 - Updated: 2023-11-15 23:00

Summary

Cisco AnyConnect Secure Mobility Solution: Mehrere Schwachstellen ermöglichen Denial of Service

Notes

Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.

Produktbeschreibung

Cisco AnyConnect Secure Mobility Solution bietet eine mobile VPN Lösung für PCs und Smartphones.

Angriff

Ein lokaler Angreifer kann mehrere Schwachstellen in Cisco AnyConnect Secure Mobility Solution ausnutzen, um einen Denial of Service Angriff durchzuführen.

Betroffene Betriebssysteme

- Linux - MacOS X - Windows - Android - iPhoneOS

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "text": "mittel"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Cisco AnyConnect Secure Mobility Solution bietet eine mobile VPN L\u00f6sung f\u00fcr PCs und Smartphones.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein lokaler Angreifer kann mehrere Schwachstellen in Cisco AnyConnect Secure Mobility Solution ausnutzen, um einen Denial of Service Angriff durchzuf\u00fchren.",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- Linux\n- MacOS X\n- Windows\n- Android\n- iPhoneOS",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2023-2931 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2023/wid-sec-w-2023-2931.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2023-2931 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2023-2931"
      },
      {
        "category": "external",
        "summary": "Cisco Security Advisory vom 2023-11-15",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-accsc-dos-9SLzkZ8"
      }
    ],
    "source_lang": "en-US",
    "title": "Cisco AnyConnect Secure Mobility Solution: Mehrere Schwachstellen erm\u00f6glichen Denial of Service",
    "tracking": {
      "current_release_date": "2023-11-15T23:00:00.000+00:00",
      "generator": {
        "date": "2024-08-15T18:01:42.430+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.3.5"
        }
      },
      "id": "WID-SEC-W-2023-2931",
      "initial_release_date": "2023-11-15T23:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2023-11-15T23:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Cisco AnyConnect Secure Mobility Solution \u003c 4.10 MR8",
                "product": {
                  "name": "Cisco AnyConnect Secure Mobility Solution \u003c 4.10 MR8",
                  "product_id": "T031199",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:cisco:anyconnect_secure_mobility_client:4.10_mr8"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Cisco AnyConnect Secure Mobility Solution \u003c 5.0 MR5 (5.0.05040)",
                "product": {
                  "name": "Cisco AnyConnect Secure Mobility Solution \u003c 5.0 MR5 (5.0.05040)",
                  "product_id": "T031200",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:cisco:anyconnect_secure_mobility_client:5.0_mr5_%285.0.05040%29"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Cisco AnyConnect Secure Mobility Solution \u003c 5.1",
                "product": {
                  "name": "Cisco AnyConnect Secure Mobility Solution \u003c 5.1",
                  "product_id": "T031201",
                  "product_identification_helper": {
                    "cpe": "cpe:/a:cisco:anyconnect_secure_mobility_client:5.1"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "AnyConnect Secure Mobility Solution"
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2023-20241",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in der Cisco AnyConnect Secure Mobility Solution. Diese Fehler bestehen aufgrund eines Out-of-Bounds-Memory-Read, der es erm\u00f6glicht, den VPN-Agent-Dienst zum Absturz zu bringen, wodurch er f\u00fcr alle Benutzer des Systems nicht mehr verf\u00fcgbar ist. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, indem er sich bei einem betroffenen Ger\u00e4t anmeldet, w\u00e4hrend ein anderer Benutzer auf demselben System auf den Cisco Secure Client zugreift, und dann manipulierte Pakete an einen Port auf diesem lokalen Host sendet, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "release_date": "2023-11-15T23:00:00.000+00:00",
      "title": "CVE-2023-20241"
    },
    {
      "cve": "CVE-2023-20240",
      "notes": [
        {
          "category": "description",
          "text": "Es bestehen mehrere Schwachstellen in der Cisco AnyConnect Secure Mobility Solution. Diese Fehler bestehen aufgrund eines Out-of-Bounds-Memory-Read, der es erm\u00f6glicht, den VPN-Agent-Dienst zum Absturz zu bringen, wodurch er f\u00fcr alle Benutzer des Systems nicht mehr verf\u00fcgbar ist. Ein lokaler Angreifer kann diese Schwachstelle ausnutzen, indem er sich bei einem betroffenen Ger\u00e4t anmeldet, w\u00e4hrend ein anderer Benutzer auf demselben System auf den Cisco Secure Client zugreift, und dann manipulierte Pakete an einen Port auf diesem lokalen Host sendet, um einen Denial-of-Service-Zustand zu verursachen."
        }
      ],
      "release_date": "2023-11-15T23:00:00.000+00:00",
      "title": "CVE-2023-20240"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2023-20241 (GCVE-0-2023-20241)

FKIE_CVE-2023-20241

GHSA-23QX-PFMX-49J9

GSD-2023-20241

CISCO-SA-ACCSC-DOS-9SLZKZ8

WID-SEC-W-2023-2931

Tags

Sightings

Nomenclature