Bug Search Tool: Cisco Anyconnect Secure Mobility Client Arbitrary Code Execution Vulnerability Cscvv30103

09/11/2020 Bug Search
Tools & Resources
Bug Search Tool
Bug Search (/bugsearch/) CSCvv30103 Help | Feedback
Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

CSCvv30103
Description
Symptom:
A vulnerability in the interprocess communication (IPC) channel of Cisco AnyConnect Secure Mobility Client Software could
Customer Visible
allow an authenticated, local attacker to cause a targeted AnyConnect user to execute a malicious script.
The vulnerability is due to a lack of authentication to the IPC listener. An attacker could exploit this vulnerability by sending Notifications
crafted IPC messages to the AnyConnect client IPC listener. A successful exploit could allow an attacker to cause the
targeted AnyConnect user to execute a script. This script would execute with the privileges of the targeted AnyConnect Save Bug
user.
Open Support Case
In order to successfully exploit this vulnerability, there must be an ongoing AnyConnect session by the targeted user at the
time of the attack. To exploit this vulnerability, the attacker would also need valid user credentials on the system upon which
the AnyConnect client is being run.
Cisco has not released software updates that address this vulnerability. There are no workarounds that address this
vulnerability.
This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-ipc-KfQO9QhK
(https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-ipc-KfQO9QhK)
Conditions:
Please refer to the Security Advisory.
Workaround:
Further Problem Description:

PSIRT Evaluation:
The Cisco PSIRT has assigned this bug the following CVSS version 3 score. The Base CVSS score as of the time of
evaluation is 7.3:
https://tools.cisco.com/security/center/cvssCalculator.x?vector=CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
(https://tools.cisco.com/security/center/cvssCalculator.x?vector=CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H)
CVE ID CVE-2020-3556 has been assigned to document this issue.
Additional information on Cisco's security vulnerability policy can be found at the following URL:
http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html
(http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html)
Was the description about this Bug Helpful? (0)
Details
https://bst.cloudapps.cisco.com/bugsearch/bug/CSCvv30103 1/3
Last Modified: Nov 8,2020 Known Affected Releases: (2) Known Fixed Releases: (0)
Status: Open 4.9(3052)
Download software for Cisco
98.145(86) AnyConnect Secure Mobility Client
Severity: 3 Moderate
(http://software.cisco.com/download/navigator.html?
mdfid=283000185)
Product: (1)
Cisco AnyConnect Secure Mobility
Client
Support Cases: 24
Community Discussion on CSCvv30103 - Cisco Community 0 Discussion(s)
Start Community Discussion (https://community.cisco.com/t5/forums/postpage/board-id/5451-discussions-cisco-bug-discussions?message-subject=CSCvv30103 - Cisco

AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability)
Information For News & Alerts Support About Cisco

(//www.cisco.com/c/en/us/solutions/index.html)
(https://newsroom.cisco.com/) (//www.cisco.com/c/en/us/support/index.html)(//www.cisco.com/c/en/us/about.html)
Small Business Newsroom (https://newsroom.cisco.com/) Downloads Investor Relations
(//www.cisco.com/c/en/us/solutions/small- Blogs (//blogs.cisco.com/) (https://software.cisco.com/download/navigator.html?
(http://investor.cisco.com/)
business.html) i=!ch) Corporate Social Responsibility
Field Notices
Midsize Business (//www.cisco.com/c/en/us/support/web/tsd- Documentation (//csr.cisco.com/)
(//www.cisco.com/c/en/us/solutions/midsize/overview.html)
products-field-notice-summary.html) (//www.cisco.com/cisco/web/psa/default.html) Environmental Sustainability
Service Provider Security Advisories Communities (//csr.cisco.com/pages/environment)
(https://communities.cisco.com/welcome)
(//www.cisco.com/c/en/us/solutions/service- (https://tools.cisco.com/security/center/publicationListing.x) Trust and Transparency Center
DevNet (https://developer.cisco.com/)
provider/index.html) (//www.cisco.com/c/en/us/about/trust-
Technology Trends
Learning Network
Industries (//www.cisco.com/c/en/us/solutions/technology- transparency-center/overview.html)
trends.html)
(//www.cisco.com/c/en/us/solutions/industries.html) (https://learningnetwork.cisco.com/index.jspa?
Cloud There's Never Been A Better Time
Marketplace ciscoHome=true)
(https://marketplace.cisco.com/) (//www.cisco.com/c/en/us/solutions/cloud/overview.html) (//www.cisco.com/c/m/en_us/never-
Support Community
Contacts better/index.html?CAMPAIGN=NBT-
Internet of Things (IoT) (https://supportforums.cisco.com/index.jspa)
(//www.cisco.com/cisco/web/siteassets/contacts/index.html)
00+NBABT&COUNTRY_SITE=us&POSITION=link&REFERRING_SITE=cisco.com
Contact Cisco (//www.cisco.com/c/en/us/solutions/internet-
Video Portal (http://video.cisco.com)
of-things/overview.html) Our People (http://weare.cisco.com)
(//www.cisco.com/cisco/web/siteassets/contacts/index.html)
Software Defined Networking (SDN) Careers
Meet our Partners (//www.cisco.com/c/en/us/about/careers.html)
(//www.cisco.com/c/en/us/solutions/partner- (//www.cisco.com/c/en/us/solutions/software-
Search Jobs (https://jobs.cisco.com/?
ecosystem.html) defined-networking/overview.html)
utm_source=careersite&utm_campaign=CDC_MainFooter)
Find a Reseller Life at Cisco
(https://locatr.cloudapps.cisco.com/WWChannels/LOCATR/openBasicSearch.do) (//www.cisco.com/c/en/us/about/careers/life-
at-cisco.html)
Programs
Cisco Designated VIP Program
(//www.cisco.com/c/en/us/support/web/communities/vip.html)
Cisco Powered
(//www.cisco.com/c/en/us/solutions/cisco-
powered/overview.html)
Financing Options
(//www.cisco.com/web/ciscocapital/americas/us/index.html)
Contacts (//www.cisco.com/cisco/web/siteassets/contacts/index.html) | Feedback (https://secure.opinionlab.com/ccc01/o.asp?id=jBjOhqOJ) | Help (//www.cisco.com/web/help/index.html) |

Site Map (//www.cisco.com/web/siteassets/sitemap/index.html) | Terms & Conditions (//www.cisco.com/web/siteassets/legal/terms_condition.html) | Privacy Statement
(//www.cisco.com/web/siteassets/legal/privacy_full.html) | Cookie Policy (//www.cisco.com/web/siteassets/legal/privacy_full.html#cookies) | Trademarks
(//www.cisco.com/web/siteassets/legal/trademark.html)

Bug Search Tool: Cisco Anyconnect Secure Mobility Client Arbitrary Code Execution Vulnerability Cscvv30103

Uploaded by

Copyright:

Available Formats

Bug Search Tool: Cisco Anyconnect Secure Mobility Client Arbitrary Code Execution Vulnerability Cscvv30103

Uploaded by

Document Information

Original Description:

Original Title

Copyright

Available Formats

Share this document

Share or Embed Document

Sharing Options

Did you find this document useful?

Is this content inappropriate?

Copyright:

Available Formats

Bug Search Tool: Cisco Anyconnect Secure Mobility Client Arbitrary Code Execution Vulnerability Cscvv30103

Uploaded by

Copyright:

Available Formats

09/11/2020 Bug Search

Tools & Resources

Bug Search Tool

Bug Search (/bugsearch/) CSCvv30103 Help | Feedback

Cisco AnyConnect Secure Mobility Client Arbitrary Code Execution Vulnerability

This advisory is available at the following link:

Further Problem Description:

CVE ID CVE-2020-3556 has been assigned to document this issue.

Was the description about this Bug Helpful? (0)

Community Discussion on CSCvv30103 - Cisco Community 0 Discussion(s)

Start Community Discussion (https://community.cisco.com/t5/forums/postpage/board-id/5451-discussions-cisco-bug-discussions?message-subject=CSCvv30103 - Cisco

Information For News & Alerts Support About Cisco

Contacts (//www.cisco.com/cisco/web/siteassets/contacts/index.html) | Feedback (https://secure.opinionlab.com/ccc01/o.asp?id=jBjOhqOJ) | Help (//www.cisco.com/web/help/index.html) |

You might also like