← Back

CVE-2015-6305

nvd nist
Published: Sep 26, 2015Modified: May 6, 2026

JSON object

Loading...
7.2
Vector
AV:L/AC:L/Au:N/C:C/I:C/A:C
Exploitability: 3.9 / Impact: 10.0
Source: NVD

Description

Untrusted search path vulnerability in the CMainThread::launchDownloader function in vpndownloader.exe in Cisco AnyConnect Secure Mobility Client 2.0 through 4.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by dbghelp.dll, aka Bug ID CSCuv01279. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-4211.

Affected (51)

Cisco
1 product
Anyconnect Secure Mobility Client
Configuration A
51 vulnerable · 1 platform
Vulnerable SoftwareAffected Versions
Cisco
Anyconnect Secure Mobility Client
Version 2.0.0343
Anyconnect Secure Mobility Client
Version 2.1.0.148
Anyconnect Secure Mobility Client
Version 2.2.0133
Anyconnect Secure Mobility Client
Version 2.2.0136
Anyconnect Secure Mobility Client
Version 2.2.0140
Anyconnect Secure Mobility Client
Version 2.3.0185
Anyconnect Secure Mobility Client
Version 2.3.0254
Anyconnect Secure Mobility Client
Version 2.3.1003
Anyconnect Secure Mobility Client
Version 2.3.2016
Anyconnect Secure Mobility Client
Version 2.4.0202
Anyconnect Secure Mobility Client
Version 2.4.1012
Anyconnect Secure Mobility Client
Version 2.5.0217
Anyconnect Secure Mobility Client
Version 2.5.2006
Anyconnect Secure Mobility Client
Version 2.5.2010
Anyconnect Secure Mobility Client
Version 2.5.2011
Anyconnect Secure Mobility Client
Version 2.5.2014
Anyconnect Secure Mobility Client
Version 2.5.2017
Anyconnect Secure Mobility Client
Version 2.5.2018
Anyconnect Secure Mobility Client
Version 2.5.2019
Anyconnect Secure Mobility Client
Version 2.5.3041
Anyconnect Secure Mobility Client
Version 2.5.3046
Anyconnect Secure Mobility Client
Version 2.5.3051
Anyconnect Secure Mobility Client
Version 2.5.3054
Anyconnect Secure Mobility Client
Version 2.5.3055
Anyconnect Secure Mobility Client
Version 2.5_base
Anyconnect Secure Mobility Client
Version 3.0.0629
Anyconnect Secure Mobility Client
Version 3.0.09231
Anyconnect Secure Mobility Client
Version 3.0.09266
Anyconnect Secure Mobility Client
Version 3.0.09353
Anyconnect Secure Mobility Client
Version 3.0.0
Anyconnect Secure Mobility Client
Version 3.0.1047
Anyconnect Secure Mobility Client
Version 3.0.2052
Anyconnect Secure Mobility Client
Version 3.0.3050
Anyconnect Secure Mobility Client
Version 3.0.3054
Anyconnect Secure Mobility Client
Version 3.0.4235
Anyconnect Secure Mobility Client
Version 3.0.5075
Anyconnect Secure Mobility Client
Version 3.0.5080
Anyconnect Secure Mobility Client
Version 3.1.02043
Anyconnect Secure Mobility Client
Version 3.1.05182
Anyconnect Secure Mobility Client
Version 3.1.05187
Anyconnect Secure Mobility Client
Version 3.1.06073
Anyconnect Secure Mobility Client
Version 3.1.07021
Anyconnect Secure Mobility Client
Version 3.1.0
Anyconnect Secure Mobility Client
Version 3.1(60)
Anyconnect Secure Mobility Client
Version 4.0.00048
Anyconnect Secure Mobility Client
Version 4.0.00051
Anyconnect Secure Mobility Client
Version 4.0.0
Anyconnect Secure Mobility Client
Version 4.0(2049)
Anyconnect Secure Mobility Client
Version 4.0(48)
Anyconnect Secure Mobility Client
Version 4.0(64)
Anyconnect Secure Mobility Client
Version 4.1.0
Running on/withPlatform Versions
Microsoft
Windows
All versions

Related CWEs

CWE-426
Untrusted Search Path
The product searches for critical resources using an externally-supplied search path that can point to resources that are not under the product's direct control.

References (12)

Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
ExploitVendor Advisory
Source: psirt@cisco.com
ExploitThird Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
ExploitThird Party AdvisoryVDB Entry

Timeline

No history available yet.