VAR-201612-0358
Vulnerability from variot - Updated: 2025-04-13 23:21A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. More Information: CSCvb68043. Known Affected Releases: 4.3(2039) 4.3(748). Known Fixed Releases: 4.3(4019) 4.4(225). A local attacker may exploit this issue to execute arbitrary commands with elevated SYSTEM privileges. This issue is being tracked by Cisco Bug ID CSCvb68043
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201612-0358",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "3.1.06073"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "3.1.07021"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "4.0.0"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "4.0.00051"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "4.1.0"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "4.2.04039"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 2.4,
"vendor": "cisco",
"version": "4.3.00748"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "3.1.0"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "3.1.02043"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "3.1.05182"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "3.1.05187"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "4.0.00048"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "4.2.0"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "4.3.0"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.8,
"vendor": "cisco",
"version": "4.3.01095"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "3.1\\(60\\)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "4.0\\(64\\)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "4.0\\(48\\)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.1\\(8\\)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "4.0\\(2049\\)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "3.1 (60)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "4.0 (2049)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "4.0 (48)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "4.0 (64)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "4.1 (8)"
},
{
"model": "anyconnect secure mobility client",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
}
],
"sources": [
{
"db": "BID",
"id": "94770"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:cisco:anyconnect_secure_mobility_client",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Duarte Silva.",
"sources": [
{
"db": "BID",
"id": "94770"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
}
],
"trust": 0.9
},
"cve": "CVE-2016-9192",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.9,
"id": "CVE-2016-9192",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 1.9,
"vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "LOCAL",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.2,
"confidentialityImpact": "COMPLETE",
"exploitabilityScore": 3.9,
"id": "VHN-98012",
"impactScore": 10.0,
"integrityImpact": "COMPLETE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:L/AC:L/AU:N/C:C/I:C/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "LOCAL",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 7.8,
"baseSeverity": "HIGH",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 1.8,
"id": "CVE-2016-9192",
"impactScore": 5.9,
"integrityImpact": "HIGH",
"privilegesRequired": "LOW",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-9192",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2016-9192",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201612-205",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-98012",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2016-9192",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-98012"
},
{
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in Cisco AnyConnect Secure Mobility Client for Windows could allow an authenticated, local attacker to install and execute an arbitrary executable file with privileges equivalent to the Microsoft Windows operating system SYSTEM account. More Information: CSCvb68043. Known Affected Releases: 4.3(2039) 4.3(748). Known Fixed Releases: 4.3(4019) 4.4(225). \nA local attacker may exploit this issue to execute arbitrary commands with elevated SYSTEM privileges. \nThis issue is being tracked by Cisco Bug ID CSCvb68043",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-9192"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "BID",
"id": "94770"
},
{
"db": "VULHUB",
"id": "VHN-98012"
},
{
"db": "VULMON",
"id": "CVE-2016-9192"
}
],
"trust": 2.07
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2016-9192",
"trust": 2.9
},
{
"db": "BID",
"id": "94770",
"trust": 2.1
},
{
"db": "SECTRACK",
"id": "1037409",
"trust": 1.2
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205",
"trust": 0.7
},
{
"db": "VULHUB",
"id": "VHN-98012",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2016-9192",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-98012"
},
{
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"db": "BID",
"id": "94770"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"id": "VAR-201612-0358",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-98012"
}
],
"trust": 0.01
},
"last_update_date": "2025-04-13T23:21:03.772000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20161207-anyconnect1",
"trust": 0.8,
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-anyconnect1"
},
{
"title": "Cisco AnyConnect Secure Mobility Client Remedial measures for local privilege escalation",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=66246"
},
{
"title": "cve-2016-9192",
"trust": 0.1,
"url": "https://github.com/serializingme/cve-2016-9192 "
},
{
"title": "",
"trust": 0.1,
"url": "https://github.com/khulnasoft-labs/awesome-security "
}
],
"sources": [
{
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-264",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-98012"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.1,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20161207-anyconnect1"
},
{
"trust": 1.8,
"url": "http://www.securityfocus.com/bid/94770"
},
{
"trust": 1.3,
"url": "https://github.com/serializingme/cve-2016-9192"
},
{
"trust": 1.2,
"url": "https://github.com/nettitude/poshc2/blob/master/modules/cve-2016-9192.ps1"
},
{
"trust": 1.2,
"url": "http://www.securitytracker.com/id/1037409"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-9192"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-9192"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/en/us/products/ps10884/index.html"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/264.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-98012"
},
{
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"db": "BID",
"id": "94770"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-98012"
},
{
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"db": "BID",
"id": "94770"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-12-14T00:00:00",
"db": "VULHUB",
"id": "VHN-98012"
},
{
"date": "2016-12-14T00:00:00",
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"date": "2016-12-07T00:00:00",
"db": "BID",
"id": "94770"
},
{
"date": "2016-12-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"date": "2016-12-09T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"date": "2016-12-14T00:59:15.223000",
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-04-04T00:00:00",
"db": "VULHUB",
"id": "VHN-98012"
},
{
"date": "2017-04-04T00:00:00",
"db": "VULMON",
"id": "CVE-2016-9192"
},
{
"date": "2016-12-20T00:08:00",
"db": "BID",
"id": "94770"
},
{
"date": "2016-12-20T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-006314"
},
{
"date": "2017-01-04T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201612-205"
},
{
"date": "2025-04-12T10:46:40.837000",
"db": "NVD",
"id": "CVE-2016-9192"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "local",
"sources": [
{
"db": "BID",
"id": "94770"
},
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
}
],
"trust": 0.9
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Windows for Cisco AnyConnect Secure Mobility Client Vulnerable to installing arbitrary executable files",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-006314"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "permissions and access control",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201612-205"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…