CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4211

Cisco AnyConnect Secure Mobility Client 3.1(60) on Windows does not properly validate pathnames, which allows local users to gain privileges via a crafted INF file, aka Bug ID CSCus65862.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 32.2%

CVSS Severity

CVSS v2 Score 7.2

References

Products affected by CVE-2015-4211

Cisco » Anyconnect Secure Mobility Client » Version: 3.1(60)

cpe:2.3:a:cisco:anyconnect_secure_mobility_client:3.1(60)
Microsoft » Windows » Version: N/A

cpe:2.3:o:microsoft:windows:-
Microsoft » Windows » Version: 1.0

cpe:2.3:o:microsoft:windows:1.0
Microsoft » Windows » Version: 2.0

cpe:2.3:o:microsoft:windows:2.0
Microsoft » Windows » Version: 2000

cpe:2.3:o:microsoft:windows:2000
Microsoft » Windows » Version: 3.0

cpe:2.3:o:microsoft:windows:3.0
Microsoft » Windows » Version: 3.1

cpe:2.3:o:microsoft:windows:3.1
Microsoft » Windows » Version: 3.11

cpe:2.3:o:microsoft:windows:3.11
Microsoft » Windows » Version: server_2008

cpe:2.3:o:microsoft:windows:server_2008
Microsoft » Windows » Version: vista

cpe:2.3:o:microsoft:windows:vista

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2015-4211

Products

Pricing

Contact Us