Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
security monitoring analysis and response system vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2013-5563
Cross-site scripting (XSS) vulnerability in Query/NewQueryResult.jsp in Cisco Security Monitoring, Analysis and Response System (CS-MARS) allows remote malicious users to inject arbitrary web script or HTML via the isnowLatency parameter, aka Bug ID CSCul16173.
Cisco Security Monitoring Analysis And Response System
755
VMScore
CVE-2006-3733
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.1, allows remote malicious users to gain privileges as the CS-MARS administrator and execute arbitrary Ja...
Cisco Security Monitoring Analysis And Response System 4.2.0
1 EDB exploit
570
VMScore
CVE-2007-0397
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.3 and Adaptive Security Device Manager (ASDM) prior to 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote malicious users to spoof...
Cisco Security Monitoring Analysis And Response System 4.2.3
Cisco Adaptive Security Appliance Device Manager 5.2.53
383
VMScore
CVE-2013-1140
The XML parser in Cisco Security Monitoring, Analysis, and Response System (MARS) allows remote malicious users to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issue, aka Bug ID CSCue55093...
Cisco Security Monitoring Analysis And Response System
641
VMScore
CVE-2006-0181
Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.1.3 has an undocumented administrative account with a default password, which allows local users to gain privileges via the expert command.
Cisco Cs-mars 4.1.2
Cisco Cs-mars 4.1
445
VMScore
CVE-2006-3732
Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows malicious users to obtain sensitive information.
Cisco Cs-mars 4.1.3
Cisco Cs-mars 4.1.5
Cisco Cs-mars 4.1
Cisco Cs-mars 4.1.2
725
VMScore
CVE-2006-3734
Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) prior to 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root.
Cisco Cs-mars 4.1.5
Cisco Cs-mars 4.1.2
Cisco Cs-mars 4.1.3
Cisco Cs-mars 4.1
1 EDB exploit
294
VMScore
CVE-2009-2977
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) 6.0.4 and previous versions stores cleartext passwords in log/sysbacktrace.## files within error-logs.tar.gz archives, which allows context-dependent malicious users to obtain sensitive information by reading t...
Cisco Cs-mars 4.1
Cisco Cs-mars
Cisco Cs-mars 4.1.3
Cisco Cs-mars 4.1.2
Cisco Cs-mars 4.1.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started