Threat Post

Cisco Zero-Day in AnyConnect Secure Mobility Client Remains Unpatched

Cisco also disclosed high-severity vulnerabilities in its Webex and SD-WAN products. Cisco has disclosed a zero-day vulnerability – for which there is not yet a patch – in the Windows, macOS and Linux ...
Bleeping Computer

Cisco fixes AnyConnect bug giving Windows SYSTEM privileges

Cisco has fixed a high-severity vulnerability found in Cisco Secure Client (formerly AnyConnect Secure Mobility Client) software that can let attackers escalate privileges to the SYSTEM account used ...
PC World

Cisco fixes privilege escalation flaws in AnyConnect Secure Mobility Client

The Cisco AnyConnect Secure Mobility Client has been updated to fix vulnerabilities that could allow attackers to gain system or root privileges on Windows, Linux and Mac OS X computers. The ...
Ars Technica

iOS 12.x/Cisco AnyConnect Secure Mobility

At my shop, we previously used the Legacy Cisco AnyConnect Secure Mobility client. With the advent of iOS 12.x, while we're able to successfully complete enrollment in two-factor, the certificates are ...
Bleeping Computer

Cisco discloses AnyConnect VPN zero-day, exploit code available

Cisco has disclosed today a zero-day vulnerability in the Cisco AnyConnect Secure Mobility Client software with proof-of-concept exploit code publicly available. While security updates are not yet ...
Network World

Cisco sets the bar for mobile security

Cisco has been a leader in remote access VPNs since 1999, and its latest release, the AnyConnect Secure Mobility Solution, will make both end users and network managers very happy, despite a few rough ...
Ars Technica

Two Factor VPN Certs Not Recognized by iOS/Cisco Secure AnyConnect App

At my shop, we previously used the Legacy Cisco AnyConnect Secure Mobility client. With the advent of iOS 12.x, while we're able to successfully complete enrollment in two-factor, the certificates are ...