CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Cisco: >> Anyconnect Secure Mobility Client >> 3.0 Security Vulnerabilities

CVE-2011-2040

The helper application in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) before 2.5.3041, and 3.0.x before 3.0.629, on Linux and Mac OS X downloads a client executable file (vpndownloader.exe) without verifying its authenticity, which allows remote attackers to execute arbitrary code via the url property to a Java applet, aka Bug ID CSCsy05934.

CVSS Score

9.3

EPSS Score

0.027

Published

2011-06-02

Page 3

Vulnerabilities

Vulnerable Software

Cisco: >> Anyconnect Secure Mobility Client >> 3.0 Security Vulnerabilities

Products

Pricing

Contact Us