CVE-2015-0664

medium Cisco
CVSS v3 Base Score
4.3
AV:L/AC:L/Au:S/C:P/I:P/A:P
EPSS Score
0.1%
Exploitation probability in 30 days
Top 78% most likely to be exploited
Attack Characteristics
Attack Vector
Local
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: March 18, 2015 (4074 days ago)
Last Modified: May 6, 2026
Vendor: Cisco
Source: NVD

Description

The IPC channel in Cisco AnyConnect Secure Mobility Client 4.0(.00051) and earlier allows local users to write to arbitrary userspace memory locations, and consequently gain privileges, via crafted messages, aka Bug ID CSCus79195.

CWE

CWE-20

Affected Products

cisco anyconnect secure mobility client

References

🔗 tools.cisco.com 🔗 www.securitytracker.com 🔗 tools.cisco.com 🔗 www.securitytracker.com