Sign-up

ID

VAR-202101-1026


CVE

CVE-2021-1258


TITLE

Cisco AnyConnect Secure Mobility Client  Vulnerability in privilege management

Trust: 0.8

sources: JVNDB: JVNDB-2021-002763

DESCRIPTION

A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the local CLI to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying OS of the affected device. The attacker would need to have valid user credentials to exploit this vulnerability. Cisco AnyConnect Secure Mobility Client Contains a privilege management vulnerability.Information may be obtained

Trust: 1.71

sources: NVD: CVE-2021-1258 // JVNDB: JVNDB-2021-002763 // VULHUB: VHN-374312

AFFECTED PRODUCTS

vendor:mcafeemodel:agent epolicy orchestrator extensionscope:ltversion:5.7.6

Trust: 1.0

vendor:ciscomodel:anyconnect secure mobility clientscope:ltversion:4.9.03047

Trust: 1.0

vendor:ciscomodel:anyconnect secure mobility clientscope:ltversion:4.9.03049

Trust: 1.0

vendor:シスコシステムズmodel:cisco anyconnect secure mobility clientscope: - version: -

Trust: 0.8

vendor:シスコシステムズmodel:cisco anyconnect secure mobility clientscope:eqversion: -

Trust: 0.8

sources: JVNDB: JVNDB-2021-002763 // NVD: CVE-2021-1258

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2021-1258
value: MEDIUM

Trust: 1.0

ykramarz@cisco.com: CVE-2021-1258
value: MEDIUM

Trust: 1.0

NVD: CVE-2021-1258
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-202101-958
value: MEDIUM

Trust: 0.6

VULHUB: VHN-374312
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2021-1258
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-374312
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:P/I:N/A:N
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: PARTIAL
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2021-1258
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: 1.8
impactScore: 3.6
version: 3.1

Trust: 2.0

NVD: CVE-2021-1258
baseSeverity: MEDIUM
baseScore: 5.5
vectorString: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
attackVector: LOCAL
attackComplexity: LOW
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: NONE
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-374312 // JVNDB: JVNDB-2021-002763 // CNNVD: CNNVD-202101-958 // NVD: CVE-2021-1258 // NVD: CVE-2021-1258

PROBLEMTYPE DATA

problemtype:CWE-269

Trust: 1.1

problemtype:CWE-264

Trust: 1.0

problemtype:Improper authority management (CWE-269) [NVD Evaluation ]

Trust: 0.8

sources: VULHUB: VHN-374312 // JVNDB: JVNDB-2021-002763 // NVD: CVE-2021-1258

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-202101-958

TYPE

permissions and access control issues

Trust: 0.6

sources: CNNVD: CNNVD-202101-958

PATCH

title:cisco-sa-anyconnect-fileread-PbHbgHMjurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-fileread-PbHbgHMj

Trust: 0.8

title:Cisco AnyConnect Secure Mobility Client Fixes for permissions and access control issues vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=139420

Trust: 0.6

sources: JVNDB: JVNDB-2021-002763 // CNNVD: CNNVD-202101-958

EXTERNAL IDS

db:NVDid:CVE-2021-1258

Trust: 2.5

db:MCAFEEid:SB10382

Trust: 1.7

db:JVNDBid:JVNDB-2021-002763

Trust: 0.8

db:AUSCERTid:ESB-2022.1645

Trust: 0.6

db:AUSCERTid:ESB-2021.0155

Trust: 0.6

db:CNNVDid:CNNVD-202101-958

Trust: 0.6

db:VULHUBid:VHN-374312

Trust: 0.1

sources: VULHUB: VHN-374312 // JVNDB: JVNDB-2021-002763 // CNNVD: CNNVD-202101-958 // NVD: CVE-2021-1258

REFERENCES

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-anyconnect-fileread-pbhbghmj

Trust: 2.3

url:https://kc.mcafee.com/corporate/index?page=content&id=sb10382

Trust: 1.6

url:https://nvd.nist.gov/vuln/detail/cve-2021-1258

Trust: 1.4

url:https://vigilance.fr/vulnerability/cisco-anyconnect-secure-mobility-client-file-reading-34312

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2021.0155/

Trust: 0.6

url:https://www.auscert.org.au/bulletins/esb-2022.1645

Trust: 0.6

url:https://kc.mcafee.com/corporate/index?page=content&id=sb10382

Trust: 0.1

sources: VULHUB: VHN-374312 // JVNDB: JVNDB-2021-002763 // CNNVD: CNNVD-202101-958 // NVD: CVE-2021-1258

SOURCES

db:VULHUBid:VHN-374312
db:JVNDBid:JVNDB-2021-002763
db:CNNVDid:CNNVD-202101-958
db:NVDid:CVE-2021-1258

LAST UPDATE DATE

2024-11-23T19:26:21.714000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-374312date:2022-07-25T00:00:00
db:JVNDBid:JVNDB-2021-002763date:2021-09-30T08:17:00
db:CNNVDid:CNNVD-202101-958date:2022-04-15T00:00:00
db:NVDid:CVE-2021-1258date:2024-11-21T05:43:56.737

SOURCES RELEASE DATE

db:VULHUBid:VHN-374312date:2021-01-13T00:00:00
db:JVNDBid:JVNDB-2021-002763date:2021-09-30T00:00:00
db:CNNVDid:CNNVD-202101-958date:2021-01-13T00:00:00
db:NVDid:CVE-2021-1258date:2021-01-13T22:15:21.287