CVE advisoryKnown Exploit
CVE-2020-3153
Cisco AnyConnect Installer Allows Privilege Escalation.
Halo Surface Signal: 1 out of 5 — much less likely to be public-facing.
A vulnerability in the Cisco AnyConnect installer allows a local attacker with credentials to copy malicious files to system directories, potentially enabling DLL hijacking. This impacts organizations by creating a risk of unauthorized system access and control.