Text only | Text with Images

Networking-Forums.com

Professional Discussions => Vendor Advisories => Topic started by: Netwörkheäd on June 10, 2023, 12:00:55 AM

Title: Cisco Security Advisory - Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows Privilege Escalation Vulnerability
Post by: Netwörkheäd on June 10, 2023, 12:00:55 AM
Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows Privilege Escalation Vulnerability

A vulnerability in the client update process of Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows could allow a low-privileged, authenticated, local attacker to elevate privileges to those of SYSTEM. The client update process is executed after a successful VPN connection is established.


This vulnerability exists because improper permissions are assigned to a temporary directory that is created during the update process. An attacker could exploit this vulnerability by abusing a specific function of the Windows installer process. A successful exploit could allow the attacker to execute code with SYSTEM privileges.


Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.


This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-csc-privesc-wx4U4Kw


Attention: Simplifying the Cisco portfolio includes the renaming of security products under one brand: Cisco Secure. For more information, see Meet Cisco Secure.



     
         
Security Impact Rating:  High
   
   
       
CVE: CVE-2023-20178
Source: Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco Secure Client Software for Windows Privilege Escalation Vulnerability (https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-csc-privesc-wx4U4Kw?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Cisco%20AnyConnect%20Secure%20Mobility%20Client%20Software%20for%20Windows%20and%20Cisco%20Secure%20Client%20Software%20for%20Windows%20Privilege%20Escalation%20Vulnerability&vs_k=1)
Title: Re: Cisco Security Advisory - Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco
Post by: Dieselboy on June 13, 2023, 08:54:10 PM
AnyConnect is great because it allows end-users to download and install anyconnect updates even though they're not an administrator and have no privilege to install. But this process mechanism has been discovered with a number of flaws allowing the unpriv user to gain admin priv. There are probably more yet to be discovered.
Title: Re: Cisco Security Advisory - Cisco AnyConnect Secure Mobility Client Software for Windows and Cisco
Post by: deanwebb on June 14, 2023, 03:37:50 PM
^ Truth. And they're likely already discovered by nation-state actors...
Text only | Text with Images