CVE-2013-1172 :: Enginsight Vulnerability Database

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Vector
NIST	NIST	6.6 UNKNOWN	LOCAL	MEDIUM	AV:L/AC:M/Au:S/C:C/I:C/A:C
cisco	CNA	---			---
CVE	ADP	---			---

Base Score

CVSS 3.x

EPSS Score

Percentile: 24%

Vendor	Product	Version
cisco	anyconnect_secure_mobility_client	-
cisco	anyconnect_secure_mobility_client	2.0
cisco	anyconnect_secure_mobility_client	2.1
cisco	anyconnect_secure_mobility_client	2.2
cisco	anyconnect_secure_mobility_client	2.2.128
cisco	anyconnect_secure_mobility_client	2.2.133
cisco	anyconnect_secure_mobility_client	2.2.136
cisco	anyconnect_secure_mobility_client	2.2.140
cisco	anyconnect_secure_mobility_client	2.3
cisco	anyconnect_secure_mobility_client	2.3.185
cisco	anyconnect_secure_mobility_client	2.3.254
cisco	anyconnect_secure_mobility_client	2.3.2016
cisco	anyconnect_secure_mobility_client	2.4
cisco	anyconnect_secure_mobility_client	2.4
cisco	anyconnect_secure_mobility_client	2.4.0202
cisco	anyconnect_secure_mobility_client	2.4.1012
cisco	anyconnect_secure_mobility_client	2.4.5004
cisco	anyconnect_secure_mobility_client	2.5
cisco	anyconnect_secure_mobility_client	2.5.0217
cisco	anyconnect_secure_mobility_client	2.5.1025
cisco	anyconnect_secure_mobility_client	2.5.2001
cisco	anyconnect_secure_mobility_client	2.5.2006
cisco	anyconnect_secure_mobility_client	2.5.2010
cisco	anyconnect_secure_mobility_client	2.5.2011
cisco	anyconnect_secure_mobility_client	2.5.2014
cisco	anyconnect_secure_mobility_client	2.5.2017
cisco	anyconnect_secure_mobility_client	2.5.2018
cisco	anyconnect_secure_mobility_client	2.5.2019
cisco	anyconnect_secure_mobility_client	2.5.3041
cisco	anyconnect_secure_mobility_client	2.5.3046
cisco	anyconnect_secure_mobility_client	2.5.3051
cisco	anyconnect_secure_mobility_client	2.5.3054
cisco	anyconnect_secure_mobility_client	2.5.3055
cisco	anyconnect_secure_mobility_client	2.5.6005
cisco	anyconnect_secure_mobility_client	3.0
cisco	anyconnect_secure_mobility_client	3.0
cisco	anyconnect_secure_mobility_client	3.0.0629
cisco	anyconnect_secure_mobility_client	3.0.1047
cisco	anyconnect_secure_mobility_client	3.0.2052
cisco	anyconnect_secure_mobility_client	3.0.3050
cisco	anyconnect_secure_mobility_client	3.0.3054
cisco	anyconnect_secure_mobility_client	3.0.4235
cisco	anyconnect_secure_mobility_client	3.0.5075
cisco	anyconnect_secure_mobility_client	3.0.5080
cisco	anyconnect_secure_mobility_client	3.0.07059
cisco	anyconnect_secure_mobility_client	3.0.08057
cisco	anyconnect_secure_mobility_client	3.0.08057
cisco	anyconnect_secure_mobility_client	3.0.08066
cisco	anyconnect_secure_mobility_client	3.1.0
cisco	anyconnect_secure_mobility_client	3.1.00495
cisco	anyconnect_secure_mobility_client	3.2.0

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1172