Deployment of this client typically involves a web-deploy method from the head-end device or a pre-deployment via enterprise software management tools. For administrators, this version provides a stable baseline for "Always-On" VPN configurations, which ensure that a device is protected from the moment it boots up. It also supports the Network Visibility Module, giving organizations granular insights into endpoint behavior and potential security threats.
The 4.10 release train acts as the definitive maintenance vehicle for AnyConnect 4.x. Important functional improvements built into this lifecycle include: Cisco AnyConnect Secure Mobility Client v4.x Cisco AnyConnect Secure Mobility Client 4.10.06...
If you encounter issues with AnyConnect 4.10.06, use the following resources: Deployment of this client typically involves a web-deploy
Key features and improvements in this release include enhanced support for modern operating system updates and refined DTLS (Datagram Transport Layer Security) performance. This ensures that latency-sensitive applications, such as VoIP and video conferencing, maintain high quality even over encrypted connections. Additionally, 4.10.06 includes several under-the-hood security patches that mitigate vulnerabilities related to privilege escalation and arbitrary code execution. Additionally, 4
Limited extended support for Windows 7 was provided for customers with active Windows 7 extended support contracts with Microsoft, though Cisco no longer performed substantial quality‑assurance testing on that platform. Windows XP was not supported. Windows on ARM and other Linux distributions (e.g., Ubuntu, Debian, CentOS) were not officially supported but were known to work with varying levels of success.
A high-severity vulnerability (CVE-2023-20178) was found in the upgrade process of the Windows client. It existed because improper permissions were assigned to a temporary directory created during the upgrade process. A low-privileged, local attacker could exploit this flaw to escalate their privileges to the SYSTEM account. The fix for this vulnerability was included in AnyConnect Secure Mobility Client for Windows 4.10MR7 (4.10.07073) and Cisco Secure Client for Windows 5.0MR2.
Administrators were also warned to patch two older AnyConnect flaws, CVE-2020-3433 and CVE-2020-3153, which had public exploit code available and were confirmed to be under active exploitation. These flaws allowed a chain of attacks that could result in arbitrary code execution with SYSTEM privileges on Windows.