| OS | Web‑Deploy Package Name | |----|-------------------------| | Windows | anyconnect-win-version-webdeploy-k9.pkg | | macOS | anyconnect-macos-version-webdeploy-k9.pkg | | Linux (64-bit) | anyconnect-linux64-version-webdeploy-k9.pkg |
Enhanced reliability when detecting captive portals (like those in hotels or airports) specifically when using the Secure Web Gateway (SWG) .
On macOS, improved behavior for server reachability tests and fixed intermittent website loading issues with SWG.
AnyConnect 4.10 improves the experience on macOS when users are behind captive portals (like hotel or airport WiFi), making it easier for users to log in and connect to the VPN, reducing support calls. 3. Architecture Improvements to Downloader Cisco AnyConnect Secure Mobility Client 4.10.06...
Cisco has announced that will be the last major release of the "classic" AnyConnect codebase. Starting mid-2025, development shifts to Cisco Secure Client (formerly AnyConnect 5.0+), which includes:
The end-of-life for version 4.x means you should plan your migration to the latest version, now known as the (version 5.x and later). This new version includes all the security fixes and new features unavailable in the 4.x line.
| Vulnerability | Affected Versions | Impact | Fixed in Version | | :--- | :--- | :--- | :--- | | | All versions prior to 5.0.02075 | Allows a local attacker to gain SYSTEM-level privileges, leading to full system compromise. | 5.0.02075 | | Denial of Service (DoS) (IKEv2) | All 4.x versions | An unauthenticated, remote attacker can cause the client to crash. | Unpatched (EOL) | | SSLv3/TLSv1 Weaknesses | All 4.x versions | The use of older encryption protocols could weaken key derivation, making VPN communications potentially vulnerable. | Unpatched (EOL) | This new version includes all the security fixes
When users attempt to connect to the VPN gateway (ASA or FTD) via a browser, the headend automatically pushes the latest client version to the endpoint.
: Users still on AnyConnect 4.10.06 are strongly encouraged to migrate to Cisco Secure Client 5.x to continue receiving security updates and technical support.
Limited extended support for Windows 7 was provided for customers with active Windows 7 extended support contracts with Microsoft, though Cisco no longer performed substantial quality‑assurance testing on that platform. Windows XP was not supported. Windows on ARM and other Linux distributions (e.g., Ubuntu, Debian, CentOS) were not officially supported but were known to work with varying levels of success. : Cisco no longer provides patches
: Cisco no longer provides patches, maintenance releases, or security fixes for any 4.10.x version.
A documented configuration example for AnyConnect SSO with Duo and LDAP mapping on Secure Firewall uses AnyConnect Secure Mobility Client version 4.10.06079 with Windows Server 2016 as an Active Directory server. The flow works as follows: the AnyConnect client initiates an SSL VPN connection to Cisco Secure FTD; FTD redirects the embedded browser to Duo SSO for SAML authentication; after successful primary authentication against AD, Duo SSO initiates two‑factor authentication; upon 2FA completion, the user is redirected back to the gateway with a success message.