Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2016-9192

A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. More Information: CSCvb68043. Known Affected Releases: 4.3(2039) 4.3(748). Known Fixed Releases: 4.3(4019) 4.4(225).

Published

2016-12-14T00:59:15.223

Last Modified

2025-04-12T10:46:40.837

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.8 (HIGH)

CVSSv2 Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Access Vector: LOCAL
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

3.9

Impact Score

10.0

Weaknesses

Type: Primary
CWE-264

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cisco	anyconnect_secure_mobility_client	3.1\(60\)	Yes
Application	cisco	anyconnect_secure_mobility_client	3.1.0	Yes
Application	cisco	anyconnect_secure_mobility_client	3.1.02043	Yes
Application	cisco	anyconnect_secure_mobility_client	3.1.05182	Yes
Application	cisco	anyconnect_secure_mobility_client	3.1.05187	Yes
Application	cisco	anyconnect_secure_mobility_client	3.1.06073	Yes
Application	cisco	anyconnect_secure_mobility_client	3.1.07021	Yes
Application	cisco	anyconnect_secure_mobility_client	4.0\(48\)	Yes
Application	cisco	anyconnect_secure_mobility_client	4.0\(64\)	Yes
Application	cisco	anyconnect_secure_mobility_client	4.0\(2049\)	Yes
Application	cisco	anyconnect_secure_mobility_client	4.0.0	Yes
Application	cisco	anyconnect_secure_mobility_client	4.0.00048	Yes
Application	cisco	anyconnect_secure_mobility_client	4.0.00051	Yes
Application	cisco	anyconnect_secure_mobility_client	4.1\(8\)	Yes
Application	cisco	anyconnect_secure_mobility_client	4.1.0	Yes
Application	cisco	anyconnect_secure_mobility_client	4.2.0	Yes
Application	cisco	anyconnect_secure_mobility_client	4.2.04039	Yes
Application	cisco	anyconnect_secure_mobility_client	4.3.0	Yes
Application	cisco	anyconnect_secure_mobility_client	4.3.00748	Yes
Application	cisco	anyconnect_secure_mobility_client	4.3.01095	Yes

References

http://www.securityfocus.com/bid/94770 Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1037409 Third Party Advisory, VDB Entry ([email protected])
https://github.com/nettitude/PoshC2/blob/master/Modules/CVE-2016-9192.ps1 ([email protected])
https://github.com/serializingme/cve-2016-9192 ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-anyconnect1 Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/94770 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1037409 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/nettitude/PoshC2/blob/master/Modules/CVE-2016-9192.ps1 (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/serializingme/cve-2016-9192 (af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-anyconnect1 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)