The vulnerability is due to insufficient validation of resources that are loaded by the application at run time.
To exploit this vulnerability, the attacker would need to have valid credentials on the Windows system. A vulnerability in the interprocess communication (IPC) channel of Cisco An圜onnect Secure Mobility Client for Windows could allow an authenticated, local attacker to perform a DLL hijacking attack.
