A vulnerability in the HostScan component of Cisco AnyConnect Secure Mobility Client for Linux could allow an unauthenticated, remote attacker to read sensitive information on an affected system. The vulnerability exists because the affected software performs improper bounds checks. An attacker could exploit this vulnerability by crafting HTTP traffic for the affected component to download and process. A successful exploit could allow the attacker to read sensitive information on the affected system.
History

Thu, 21 Nov 2024 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2019-05-16T01:20:28.677819Z

Updated: 2024-11-21T19:24:20.191Z

Reserved: 2018-12-06T00:00:00

Link: CVE-2019-1853

cve-icon Vulnrichment

Updated: 2024-08-04T18:28:42.877Z

cve-icon NVD

Status : Modified

Published: 2019-05-16T02:29:00.607

Modified: 2024-11-21T04:37:32.053

Link: CVE-2019-1853

cve-icon Redhat

No data.