Home

CVE-2015-6305

Description

Untrusted search path vulnerability in the CMainThread::launchDownloader function in vpndownloader.exe in Cisco AnyConnect Secure Mobility Client 2.0 through 4.1 on Windows allows local users to gain privileges via a Trojan horse DLL in the current working directory, as demonstrated by dbghelp.dll, aka Bug ID CSCuv01279. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-4211.

Risk Information

Base Score
8.4
MODERATE
Vector
AV:L/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
1.961

Associated Vulnerability

VulnerabilityOS Platform
Vulnerability CVE-2015-6305,CVE-2015-6322 are affected in Cisco AnyConnect Secure Mobility Client For Windows 4.1.0Windows
Multiple Vulnerabilities are affected in Cisco AnyConnect Secure Mobility Client For Windows 2.3.2016Windows
Multiple Vulnerabilities are affected in Cisco AnyConnect Secure Mobility Client For Windows 2.4.0202Windows
Multiple Vulnerabilities are affected in Cisco AnyConnect Secure Mobility Client For Windows 2.4.1012Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.3.2016Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.4.0202Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.4.1012Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2006Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2010Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2011Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2014Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2017Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2018Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.2019Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.0629Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.1.0Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.0217Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.3041Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.3046Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.3051Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.3054Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 2.5.3055Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.1047Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.2052Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.3050Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.3054Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.4235Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.5075Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.0.5080Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 4.0(64)Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 3.1(60)Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 4.0(2049)Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.0.0343Windows
Vulnerabilities CVE-2015-6305 are affected in Any Connect (Microsoft Store) 2.1.0.148Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.2.0133Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.2.0136Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.2.0140Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.3.0185Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.3.0254Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.3.1003Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 2.5_baseWindows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 3.0.0Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 3.0.09231Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 3.0.09266Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369 are affected in Any Connect (Microsoft Store) 3.0.09353Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 3.1.02043Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 3.1.05182Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 3.1.05187Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 3.1.06073Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 3.1.07021Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 4.0(48)Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 4.0.0Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 4.0.00048Windows
Multiple Vulnerabilities are affected in Any Connect (Microsoft Store) 4.0.00051Windows
Vulnerabilities CVE-2015-6305,CVE-2015-6322,CVE-2016-6369,CVE-2016-9192 are affected in Any Connect (Microsoft Store) 4.1.0Windows
Untrusted Search Path Vulnerability (CVE-2015-6305)NCM

Patch Details

Click to see the patches provided by ManageEngine for this CVE
Patch IDPatch Description
PATCH-338372Cisco AnyConnect Secure Mobility Client (4.10.08029) (Manual Upload Required)
PATCH-332488Cisco AnyConnect Secure Mobility Client (4.10.07073)
PATCH-332488Cisco AnyConnect Secure Mobility Client (4.10.07073)
PATCH-332488Cisco AnyConnect Secure Mobility Client (4.10.07073)

References

https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234