CVE-2013-1172

medium Cisco
CVSS v3 Base Score
6.6
AV:L/AC:M/Au:S/C:C/I:C/A:C
EPSS Score
0.1%
Exploitation probability in 30 days
Top 76% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
M
Confidentiality
C
Integrity
C
Availability
C
Published: April 11, 2013 (4781 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

The Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) does not properly verify files, which allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14153.

CWE

CWE-20

Affected Products

cisco anyconnect secure mobility client

References

🔗 tools.cisco.com 🔗 tools.cisco.com