CVE-2025-20206
Cisco Secure Client for Windows with VPN Posture (HostScan) Module DLL Hijacking Vulnerability
Severity Score
7.1
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track*
*SSVC
Descriptions
A vulnerability in the interprocess communication (IPC) channel of Cisco Secure Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack on an affected device if the Secure Firewall Posture Engine, formerly HostScan, is installed on Cisco Secure Client. This vulnerability is due to insufficient validation of resources that are loaded by the application at run time. An attacker could exploit this vulnerability by sending a crafted IPC message to a specific Cisco Secure Client process. A successful exploit could allow the attacker to execute arbitrary code on the affected machine with SYSTEM privileges. To exploit this vulnerability, the attacker must have valid user credentials on the Windows system.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track*
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2024-10-10 CVE Reserved
- 2025-03-05 CVE Published
- 2025-03-06 CVE Updated
- 2025-04-06 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-347: Improper Verification of Cryptographic Signature
CAPEC
References (1)
| URL | Tag | Source |
|---|---|---|
| https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-secure-dll-injection-AOyzEqSg |
|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.00086 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.00086" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.01095 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.01095" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.02028 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.02028" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.03047 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.03047" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.03049 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.03049" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.04043 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.04043" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.04053 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.04053" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.05042 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.05042" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.9.06037 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.9.06037" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.00093 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.00093" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.01075 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.01075" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.02086 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.02086" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.03104 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.03104" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.04065 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.04065" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.04071 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.04071" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.05085 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.05085" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.05095 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.05095" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.00238 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.00238" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.05111 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.05111" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.00529 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.00529" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.00556 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.00556" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.06079 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.06079" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.01242 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.01242" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.06090 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.06090" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.02075 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.02075" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.07061 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.07061" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.03072 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.03072" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.07062 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.07062" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.03076 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.03076" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.04032 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.04032" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.07073 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.07073" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.0.05040 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.0.05040" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.0.136 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.0.136" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.1.42 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.1.42" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.08025 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.08025" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.2.42 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.2.42" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 4.10.08029 Search vendor "Cisco" for product "Cisco Secure Client" and version "4.10.08029" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.3.62 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.3.62" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.4.74 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.4.74" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.5.65 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.5.65" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.6.103 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.6.103" | en |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Cisco Secure Client Search vendor "Cisco" for product "Cisco Secure Client" | 5.1.7.80 Search vendor "Cisco" for product "Cisco Secure Client" and version "5.1.7.80" | en |
Affected
| ||||||