cisco-sa-ac-leak-Sew6g2kd

Bypassing Tunnels: Leaking VPN Client Traffic by Abusing Routing Tables Affecting Cisco AnyConnect Secure Mobility Client and Cisco Secure Client

cisco-sa-ac-leak-Sew6g2kd · Informational · Published 2 years ago · Updated 2 years ago

On August 8, 2023, the paper Bypassing Tunnels: Leaking VPN Client Traffic by Abusing Routing Tables was made public. The paper discusses two attacks that can cause VPN clients to leak traffic outside the protected VPN tunnel. In both instances, an attacker can manipulate routing exceptions that are maintained by the client to redirect traffic to a device that they control without the benefit of the VPN tunnel encryption. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ac-leak-Sew6g2kd

Cisco advisory ·CSAF JSON

Workarounds

No workaround information imported yet.

CVEs	CVE-2023-36672, CVE-2023-36673
Cisco Bug IDs	NA
CVSS Score	Base NA
Product Names From Source	NA, Cisco Secure Client

Related Products

Product	CVE	Evidence
Cisco Secure Client	CVE-2023-36673	Cisco OpenVuln
Cisco Secure Client	CVE-2023-36672	Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client	CVE-2023-36673	Cisco OpenVuln
Cisco AnyConnect Secure Mobility Client	CVE-2023-36672	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Bypassing Tunnels: Leaking VPN Client Traffic by Abusing Routing Tables Affecting Cisco AnyConnect Secure Mobility Client and Cisco Secure Client

Workarounds

Related Products