Cisco AnyConnect Profile Editor XML External Entity Injection Vulnerability For Cisco AnyConnect Secure Mobility Client
Risk Information
Base Score
4.5
MODERATE
Vector
I:L/AV:L/AC:L/S:U/PR:L/A:N/UI:N/C:L
EPSS Score
Exploitation Probability
No records foundCVE Information
No records found
Patch Details
Patch associated with this vulnerability is supported by ManageEngine.
Patch ID
1705981
Patch Description
Security Update for Cisco AnyConnect Secure Mobility Client 4.3(2034)
References
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180117-acpe