Vulnerability in Cisco Anyconnect_secure_mobility_client

CVE-2011-2041

The Start Before Logon (SBL) functionality in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) before 2.3.254 on Windows, and on Windows Mobile, allows local users to gain privileges via unspecified user-interface i…

EPSS: 0.001 (20.4th percentile) — read the EPSS interpretation.

Affected products

Cisco Anyconnect_secure_mobility_client — versions 2.0, 2.1, 2.2
Microsoft Windows
Microsoft Windows_mobile
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

20110601 Multiple Vulnerabilities in Cisco AnyConnect Secure Mobility Client (x_refsource_CISCO, vendor-advisory, Vendor Advisory)
72716 (x_refsource_OSVDB, vdb-entry)
1025591 (vdb-entry, x_refsource_SECTRACK)
48077 (vdb-entry, x_refsource_BID)