← Back

CVE-2011-2041

nvd nist
Published: Jun 2, 2011Modified: Apr 29, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

The Start Before Logon (SBL) functionality in Cisco AnyConnect Secure Mobility Client (formerly AnyConnect VPN Client) before 2.3.254 on Windows, and on Windows Mobile, allows local users to gain privileges via unspecified user-interface interaction, aka Bug ID CSCta40556.

Affected (10)

Cisco
1 product
Anyconnect Secure Mobility Client
Configuration A
10 vulnerable · 2 platform
Vulnerable SoftwareAffected Versions
Cisco
Anyconnect Secure Mobility Client
Up to 2.3.2016
Anyconnect Secure Mobility Client
Version 2.0
Anyconnect Secure Mobility Client
Version 2.1
Anyconnect Secure Mobility Client
Version 2.2.128
Anyconnect Secure Mobility Client
Version 2.2.133
Anyconnect Secure Mobility Client
Version 2.2.136
Anyconnect Secure Mobility Client
Version 2.2.140
Anyconnect Secure Mobility Client
Version 2.2
Anyconnect Secure Mobility Client
Version 2.3.185
Anyconnect Secure Mobility Client
Version 2.3
Running on/withPlatform Versions
Microsoft
Windows
All versions
Microsoft
Windows Mobile
All versions

Related CWEs

CWE-264
CWE-264

References (8)

Source: psirt@cisco.com
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.