CVE-2024-20474
Severity Score
4.3
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
A vulnerability in Internet Key Exchange version 2 (IKEv2) processing of Cisco Secure Client Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) of Cisco Secure Client.
This vulnerability is due to an integer underflow condition. An attacker could exploit this vulnerability by sending a crafted IKEv2 packet to an affected system. A successful exploit could allow the attacker to cause Cisco Secure Client Software to crash, resulting in a DoS condition on the client software.
Note: Cisco Secure Client Software releases 4.10 and earlier were known as Cisco AnyConnect Secure Mobility Client.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2023-11-08 CVE Reserved
- 2024-10-23 CVE Published
- 2024-10-23 CVE Updated
- 2024-11-02 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-191: Integer Underflow (Wrap or Wraparound)
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-csc-dos-XvPhM3bj |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.00086 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.00086" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.01095 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.01095" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.02028 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.02028" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.03047 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.03047" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.03049 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.03049" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.04043 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.04043" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.04053 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.04053" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.05042 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.05042" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.06037 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.06037" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.00093 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.00093" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.01075 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.01075" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.02086 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.02086" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.03104 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.03104" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.04065 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.04065" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.04071 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.04071" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.05085 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.05085" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.05095 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.05095" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.05111 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.05111" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.06079 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.06079" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.06090 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.06090" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.07061 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.07061" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.07062 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.07062" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.07073 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.07073" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.08025 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.08025" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.08029 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.08029" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.00238 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.00238" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.00529 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.00529" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.00556 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.00556" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.01242 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.01242" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.02075 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.02075" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.03072 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.03072" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.03076 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.03076" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.04032 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.04032" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.05040 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.05040" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.0.136 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.0.136" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.1.42 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.1.42" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.2.42 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.2.42" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.3.62 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.3.62" | en |
Affected
| ||||||