Several critical vulnerabilities were discovered in AnyConnect 4.10 during its lifecycle. Organizations still using this version should verify patching:
| CVE ID | Description | Fixed in | |--------|-------------|-----------| | | AnyConnect VPN privilege escalation (Windows) | 4.10.02086 | | CVE-2021-1468 | DLL hijacking vulnerability (Windows) | 4.10.06079 | | CVE-2022-20825 | XML parsing vulnerability in DART tool (included with client) | 4.10.08025 | cisco anyconnect 4.10
Run the latest sub-version within 4.10.x (i.e., 4.10.08025) if you cannot upgrade to 5.x. Cisco AnyConnect 4
The Android release added support for Yubikey as an external certificate for VPN authentication. cisco anyconnect 4.10
Cisco AnyConnect 4.10 is a stable and mature release suitable for enterprise deployment, particularly for organizations requiring Windows 11 or macOS Ventura support.
Cisco AnyConnect 4.10 is built on a robust and scalable architecture that ensures secure and reliable remote access to corporate networks. Some of the technical details of the solution include: