CVE-2016-9192

A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. More Information: CSCvb68043. Known Affected Releases: 4.3(2039) 4.3(748). Known Fixed Releases: 4.3(4019) 4.4(225).

Severity	HIGH
CVSS	7.8
CWE	CWE-264
KEV
Published	9 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco Secure Client	cisco-sa-20161207-anyconnect1
Cisco AnyConnect Secure Mobility Client	cisco-sa-20161207-anyconnect1