Improper Host Type Verification in Cisco AnyConnect on Android and OS X

Improper Host Type Verification in Cisco AnyConnect on Android and OS X

CVE-2014-3314 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Cisco AnyConnect on Android and OS X does not properly verify the host type, which allows remote attackers to spoof authentication forms and possibly capture credentials via unspecified vectors, aka Bug IDs CSCuo24931 and CSCuo24940.

Learn more about our Cis Benchmark Audit For Google Android.