Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cs-mars vulnerabilities and exploits
(subscribe to this query)
3.3
CVSSv2
CVE-2009-2977
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and previous versions stores cleartext passwords in log/sysbacktrace.## files within error-logs.tar.gz archives, which allows context-dependent malicious users to obtain sensitive information by reading t...
Cisco Cs-mars 4.1
Cisco Cs-mars
Cisco Cs-mars 4.1.3
Cisco Cs-mars 4.1.2
Cisco Cs-mars 4.1.5
5
CVSSv2
CVE-2006-3732
Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows malicious users to obtain sensitive information.
Cisco Cs-mars 4.1.3
Cisco Cs-mars 4.1.5
Cisco Cs-mars 4.1
Cisco Cs-mars 4.1.2
7.2
CVSSv2
CVE-2006-3734
Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root.
Cisco Cs-mars 4.1.5
Cisco Cs-mars 4.1.2
Cisco Cs-mars 4.1.3
Cisco Cs-mars 4.1
1 EDB exploit
7.2
CVSSv2
CVE-2006-0181
Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.1.3 has an undocumented administrative account with a default password, which allows local users to gain privileges via the expert command.
Cisco Cs-mars 4.1.2
Cisco Cs-mars 4.1
7.5
CVSSv2
CVE-2006-3733
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.1, allows remote malicious users to gain privileges as the CS-MARS administrator and execute arbitrary Ja...
Cisco Security Monitoring Analysis And Response System 4.2.0
1 EDB exploit
6.4
CVSSv2
CVE-2007-0397
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.3 and Adaptive Security Device Manager (ASDM) prior to 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote malicious users to spoof...
Cisco Security Monitoring Analysis And Response System 4.2.3
Cisco Adaptive Security Appliance Device Manager 5.2.53
4.3
CVSSv2
CVE-2013-5563
Cross-site scripting (XSS) vulnerability in Query/NewQueryResult.jsp in Cisco Security Monitoring, Analysis and Response System (CS-MARS) allows remote malicious users to inject arbitrary web script or HTML via the isnowLatency parameter, aka Bug ID CSCul16173.
Cisco Security Monitoring Analysis And Response System
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started