CVE-2013-1173

EPSS 0.09%
Veröffentlicht 11.04.2013 10:55:02
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

Heap-based buffer overflow in ciscod.exe in the Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14143.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Anyconnect Secure Mobility Client Version-

Cisco ≫ Anyconnect Secure Mobility Client Version2.0

Cisco ≫ Anyconnect Secure Mobility Client Version2.1

Cisco ≫ Anyconnect Secure Mobility Client Version2.2

Cisco ≫ Anyconnect Secure Mobility Client Version2.2.128

Cisco ≫ Anyconnect Secure Mobility Client Version2.2.133

Cisco ≫ Anyconnect Secure Mobility Client Version2.2.136

Cisco ≫ Anyconnect Secure Mobility Client Version2.2.140

Cisco ≫ Anyconnect Secure Mobility Client Version2.3

Cisco ≫ Anyconnect Secure Mobility Client Version2.3.185

Cisco ≫ Anyconnect Secure Mobility Client Version2.3.254

Cisco ≫ Anyconnect Secure Mobility Client Version2.3.2016

Cisco ≫ Anyconnect Secure Mobility Client Version2.4

Cisco ≫ Anyconnect Secure Mobility Client Version2.4 SwPlatformsymbian_os

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.0202

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.1012

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.4004 SwPlatformiphone_os

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.4014 SwPlatformiphone_os

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.5004 SwPlatformsymbian_os

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.7030 SwPlatformandroid

Cisco ≫ Anyconnect Secure Mobility Client Version2.4.7073 SwPlatformandroid

Cisco ≫ Anyconnect Secure Mobility Client Version2.5

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.0217

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.1025

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2001

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2006

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2010

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2011

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2014

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2017

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2018

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.2019

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.3041

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.3046

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.3051

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.3054

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.3055

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.5112 SwPlatformiphone_os

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.5116 SwPlatformandroid

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.5118 SwPlatformandroid

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.5125 SwPlatformandroid

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.5130 SwPlatformiphone_os

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.5131 SwPlatformandroid

Cisco ≫ Anyconnect Secure Mobility Client Version2.5.6005

Cisco ≫ Anyconnect Secure Mobility Client Version3.0

Cisco ≫ Anyconnect Secure Mobility Client Version3.0 HwPlatformx64

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.0629

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.1047

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.2052

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.3050

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.3054

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.4235

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.5075

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.5080

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.07059

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.08057

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.08057 HwPlatformx64

Cisco ≫ Anyconnect Secure Mobility Client Version3.0.08066

Cisco ≫ Anyconnect Secure Mobility Client Version3.1.0

Cisco ≫ Anyconnect Secure Mobility Client Version3.1.00495

Cisco ≫ Anyconnect Secure Mobility Client Version3.2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.09%	0.218

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	6.6	2.7	10	AV:L/AC:M/Au:S/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1173

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2013-1173

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-1173

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-1173

EUVD