Description
Heap-based buffer overflow in ciscod.exe in the Cisco Security Service in Cisco AnyConnect Secure Mobility Client (aka AnyConnect VPN Client) allows local users to gain privileges via unspecified vectors, aka Bug ID CSCud14143.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1173
Scores
EPSS
0.0029
EPSS Percentile
21.3%
Details
CWE
CWE-119
Status
published
Products (48)
cisco/anyconnect_secure_mobility_client
cisco/anyconnect_secure_mobility_client
2.0
cisco/anyconnect_secure_mobility_client
2.1
cisco/anyconnect_secure_mobility_client
2.2
cisco/anyconnect_secure_mobility_client
2.2.128
cisco/anyconnect_secure_mobility_client
2.2.133
cisco/anyconnect_secure_mobility_client
2.2.136
cisco/anyconnect_secure_mobility_client
2.2.140
cisco/anyconnect_secure_mobility_client
2.3
cisco/anyconnect_secure_mobility_client
2.3.185
... and 38 more
Published
Apr 11, 2013
Tracked Since
Feb 18, 2026