CVE-2016-9192

EUVD-2016-10004
A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. More Information: CSCvb68043. Known Affected Releases: 4.3(2039) 4.3(748). Known Fixed Releases: 4.3(4019) 4.4(225).
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 96%
Affected Products (NVD)
VendorProductVersion
ciscoanyconnect_secure_mobility_client
3.1\(60\)
ciscoanyconnect_secure_mobility_client
3.1.0
ciscoanyconnect_secure_mobility_client
3.1.02043
ciscoanyconnect_secure_mobility_client
3.1.05182
ciscoanyconnect_secure_mobility_client
3.1.05187
ciscoanyconnect_secure_mobility_client
3.1.06073
ciscoanyconnect_secure_mobility_client
3.1.07021
ciscoanyconnect_secure_mobility_client
4.0\(48\)
ciscoanyconnect_secure_mobility_client
4.0\(64\)
ciscoanyconnect_secure_mobility_client
4.0\(2049\)
ciscoanyconnect_secure_mobility_client
4.0.0
ciscoanyconnect_secure_mobility_client
4.0.00048
ciscoanyconnect_secure_mobility_client
4.0.00051
ciscoanyconnect_secure_mobility_client
4.1\(8\)
ciscoanyconnect_secure_mobility_client
4.1.0
ciscoanyconnect_secure_mobility_client
4.2.0
ciscoanyconnect_secure_mobility_client
4.2.04039
ciscoanyconnect_secure_mobility_client
4.3.0
ciscoanyconnect_secure_mobility_client
4.3.00748
ciscoanyconnect_secure_mobility_client
4.3.01095
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/94770
http://www.securitytracker.com/id/1037409
https://github.com/nettitude/PoshC2/blob/master/Modules/CVE-2016-9192.ps1
https://github.com/serializingme/cve-2016-9192
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-anyconnect1
http://www.securityfocus.com/bid/94770
http://www.securitytracker.com/id/1037409
https://github.com/nettitude/PoshC2/blob/master/Modules/CVE-2016-9192.ps1
https://github.com/serializingme/cve-2016-9192
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-anyconnect1