CVE-2021-1258

CVE Database · CVE-2021-1258

CVE-2021-1258

· MEDIUMModified

CVSS v3.1

5.5

EPSS

0.34%

Published

Jan 13, 2021

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the local CLI to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying OS of the affected device. The attacker would need to have valid user credentials to exploit this vulnerability.

CVSS Vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-264CWE-269

Affected Products (5)

cisco · anyconnect_secure_mobility_client (up to 4.9.03047)vulnerable

cisco · anyconnect_secure_mobility_client (up to 4.9.03049)vulnerable

mcafee · agent_epolicy_orchestrator_extension (up to 5.7.6)vulnerable

microsoft · windows

References (4)

https://kc.mcafee.com/corporate/index?page=content&id=SB10382

Third Party Advisory