CVE-2017-3813
Cisco AnyConnect Secure Mobility Client 4.3.04027 - Local Privilege Escalation
Severity Score
7.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client Software for Windows could allow an unauthenticated, local attacker to open Internet Explorer with the privileges of the SYSTEM user. The vulnerability is due to insufficient implementation of the access controls. An attacker could exploit this vulnerability by opening the Internet Explorer browser. An exploit could allow the attacker to use Internet Explorer with the privileges of the SYSTEM user. This may allow the attacker to execute privileged commands on the targeted system. This vulnerability affects versions prior to released versions 4.4.00243 and later and 4.3.05017 and later. Cisco Bug IDs: CSCvc43976.
Una vulnerabilidad en el módulo Start Before Logon (SBL) de Cisco AnyConnect Secure Mobility Client Software para Windows podría permitir a un atacante local no autenticado abrir Internet Explorer con los privilegios del usuario SYSTEM. Esta vulnerabilidad se debe a implementación insuficiente de los controles de acceso. Un atacante podría explotar esta vulnerabilidad abriendo el navegador de Internet Explorer. Una explotación podría permitir al atacante usar Internet Explorer con privilegios del usuario SYSTEM. Esto podría permitir al atacante ejecutar comandos privilegiados en el sistema objetivo. Esta vulnerabilidad afecta a versiones anteriores a las versiones lanzadas 4.4.00243 y posteriores y 4.3.05017 y posteriores. Cisco Bug IDs: CSCvc43976.
Cisco AnyConnect Start Before Logon (SBL) versions 4.3.04027 and below suffer from a local privilege escalation vulnerability.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-12-21 CVE Reserved
- 2017-02-09 CVE Published
- 2023-05-16 EPSS Updated
- 2024-08-05 CVE Updated
- 2024-08-05 First Exploit
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
- CWE-264: Permissions, Privileges, and Access Controls
- CWE-862: Missing Authorization
CAPEC
References (4)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/96145 | Vdb Entry | |
| http://www.securitytracker.com/id/1037796 | Vdb Entry |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/41476 | 2024-08-05 |
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.0.00048 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.0.00048" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.0.00051 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.0.00051" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.0.00052 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.0.00052" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.0.00057 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.0.00057" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.0.00061 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.0.00061" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.1.00028 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.1.00028" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.1.02011 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.1.02011" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.1.04011 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.1.04011" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.1.06013 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.1.06013" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.1.06020 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.1.06020" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.1.08005 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.1.08005" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.00096 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.00096" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.01022 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.01022" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.01035 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.01035" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.02075 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.02075" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.03013 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.03013" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.04018 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.04018" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.04039 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.04039" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.05015 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.05015" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.2.06014 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.2.06014" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.3.00748 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.3.00748" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.3.01095 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.3.01095" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.3.02039 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.3.02039" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.3.03086 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.3.03086" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Anyconnect Secure Mobility Client Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" | 4.3.04027 Search vendor "Cisco" for product "Anyconnect Secure Mobility Client" and version "4.3.04027" | - |
Affected
| ||||||