What is CVE-2017-3813?

CVE-2017-3813 is a high-severity vulnerability in Cisco Anyconnect_secure_mobility_client, classified under CWE-264. CVSS score: 7.8/10. Published 2017-02-09.

How severe is CVE-2017-3813?

High severity. CVSS v3 base score is 7.8 out of 10.

Is CVE-2017-3813 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Auth bypass in Cisco Anyconnect_secure_mobility_client

CVE-2017-3813

A vulnerability in the Start Before Logon (SBL) module of Cisco AnyConnect Secure Mobility Client Software for Windows could allow an unauthenticated, local attacker to open Internet Explorer with the privileges of the SYSTEM user. The vul…

EPSS: 0.012 (79.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Anyconnect_secure_mobility_client — versions 4.0.00048, 4.0.00051, 4.0.00052
N/a Cisco Anyconnect Secure Mobility Client Software For Windows Versions Prior To Released 4.4.00243 And Later 4.3.05017 Later. — versions Cisco AnyConnect Secure Mobility Client Software for Windows Versions prior to released versions 4.4.00243 and later and 4.3.05017 and later.

Weakness classification (CWE)

Public proof-of-concept exploits

ARPSyndicate/cvemon

References

psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
psirt@cisco.com (exploit, x_refsource_EXPLOIT-DB)
psirt@cisco.com (vdb-entry, x_refsource_SECTRACK)
psirt@cisco.com (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2017-3813?: CVE-2017-3813 is a high-severity vulnerability in Cisco Anyconnect_secure_mobility_client, classified under CWE-264. CVSS score: 7.8/10. Published 2017-02-09.
How severe is CVE-2017-3813?: High severity. CVSS v3 base score is 7.8 out of 10.
Is CVE-2017-3813 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.