CVE-2020-3435

Name of the Vulnerable Software and Affected Versions: Cisco AnyConnect Secure Mobility Client (affected versions not specified)

Description: The issue is related to insufficient validation of user-supplied input in the interprocess communication (IPC) channel of the Cisco AnyConnect Secure Mobility Client. This could allow an authenticated, local attacker to overwrite VPN profiles on an affected device. The attacker would need to have valid credentials on the Windows system to exploit this vulnerability. The exploitation involves sending a crafted IPC message to the AnyConnect process, which could then modify VPN profile files.

Recommendations: To resolve the issue, update the Cisco AnyConnect Secure Mobility Client to a version that includes the fix for this vulnerability. As a temporary workaround, consider restricting access to the IPC channel to minimize the risk of exploitation. Avoid using the Cisco AnyConnect Secure Mobility Client on Windows systems where an attacker may have valid credentials until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.