MacOS Local Privilege Escalation Exploitable through Cisco AnyConnect Secure Mobility ClientOn May 26, 2020, Apple released a security update for MacOS Catalina, Mojave, and High Sierra. Part of this update addressed a local privilege escalation vulnerability (CVE-2020-9817).
Cisco has determined that Cisco AnyConnect Secure Mobility Client releases 4.10.00093 and earlier could be used to exploit this vulnerability.
This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-mac-priv-esc-VqST2nrT
Security Impact Rating: Informational
Source: MacOS Local Privilege Escalation Exploitable through Cisco AnyConnect Secure Mobility Client (https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-mac-priv-esc-VqST2nrT?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=MacOS%20Local%20Privilege%20Escalation%20Exploitable%20through%20Cisco%20AnyConnect%20Secure%20Mobility%20Client&vs_k=1)