Cyber Resilience

CVE-2020-3432

Medium

Published: 12 February 2025

Published
12 February 2025
Modified
24 June 2025
KEV Added
Patch
CVSS Score v3.1 5.6 CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:N/I:L/A:H
EPSS Score 0.0011 28.6th percentile
Risk Priority 11 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2020-3432 is a medium-severity Link Following (CWE-59) vulnerability in Cisco Anyconnect Secure Mobility Client. Its CVSS base score is 5.6 (Medium).

Operationally, ranked at the 28.6th percentile by exploit likelihood (below the median); it is not currently listed in the CISA KEV catalog.

EU & UK References

Vulnerability details

A vulnerability in the uninstaller component of Cisco AnyConnect Secure Mobility Client for Mac OS could allow an authenticated, local attacker to corrupt the content of any file in the filesystem. The vulnerability is due to the incorrect handling of…

more

directory paths. An attacker could exploit this vulnerability by creating a symbolic link (symlink) to a target file on a specific path. A successful exploit could allow the attacker to corrupt the contents of the file. If the file is a critical systems file, the exploit could lead to a denial of service condition. To exploit this vulnerability, the attacker would need to have valid credentials on the system.Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

CWE(s)

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

cisco
anyconnect secure mobility client
≤ 4.9.00086

Mitigating Controls

No mitigating controls mapped yet. The per-CVE control annotator has not reached this CVE.

References