CVE-2021-1258

A vulnerability in the upgrade component of Cisco AnyConnect Secure Mobility Client could allow an authenticated, local attacker with low privileges to read arbitrary files on the underlying operating system (OS) of an affected device. The vulnerability is due to insufficient file permission restrictions. An attacker could exploit this vulnerability by sending a crafted command from the local CLI to the application. A successful exploit could allow the attacker to read arbitrary files on the underlying OS of the affected device. The attacker would need to have valid user credentials to exploit this vulnerability.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:linux_kernel:*:*
cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:macos:*:*
cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:windows:*:*

Configuration 2 (hide)

AND
cpe:2.3:a:mcafee:agent_epolicy_orchestrator_extension:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*

History

25 Jul 2022, 11:18

Type Values Removed Values Added
CPE cpe:2.3:a:mcafee:mcafee_agent:*:*:*:*:*:*:*:* cpe:2.3:a:mcafee:agent_epolicy_orchestrator_extension:*:*:*:*:*:*:*:*
First Time Mcafee agent Epolicy Orchestrator Extension

01 Jul 2022, 15:52

Type Values Removed Values Added
CPE cpe:2.3:a:mcafee:mcafee_agent:*:*:*:*:*:*:*:*
cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*
First Time Microsoft
Microsoft windows
Mcafee mcafee Agent
Mcafee
References (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10382 - (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10382 - Third Party Advisory

13 Apr 2022, 08:15

Type Values Removed Values Added
References
  • (CONFIRM) https://kc.mcafee.com/corporate/index?page=content&id=SB10382 -

20 Jan 2021, 16:37

Type Values Removed Values Added
CWE CWE-269
References (CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-fileread-PbHbgHMj - (CISCO) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-anyconnect-fileread-PbHbgHMj - Vendor Advisory
CVSS v2 : unknown
v3 : unknown
v2 : 2.1
v3 : 5.5
CPE cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:linux_kernel:*:*
cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:macos:*:*
cpe:2.3:a:cisco:anyconnect_secure_mobility_client:*:*:*:*:*:windows:*:*

13 Jan 2021, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2021-01-13 22:15

Updated : 2023-12-10 13:41


NVD link : CVE-2021-1258

Mitre link : CVE-2021-1258

CVE.ORG link : CVE-2021-1258


JSON object : View

Products Affected

microsoft

  • windows

mcafee

  • agent_epolicy_orchestrator_extension

cisco

  • anyconnect_secure_mobility_client
CWE
CWE-269

Improper Privilege Management

CWE-264

Permissions, Privileges, and Access Controls