CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

37 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2013-5403

Malware in sbrugna...

4.3CVSS6.3AI score0.00225EPSS

Exploits2References4

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2006-3728

Malware in sbrugna...

7.2CVSS6.4AI score0.00895EPSS

Exploits0References8

seebug.org•added 2014/07/01 12:0 a.m.•24 views

Cisco Security Monitoring Analysis and Response System JBoss Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/19075/info Cisco Security Monitoring, Analysis and Response System CS-MARS is prone to a vulnerability that could permit the execution of arbitrary commands. An attacker could exploit this issue to execute arbitrary...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•23 views

Cisco/Protego CS-MARS < 4.2.1 (JBoss) Remote Code Execution Exploit

No description provided by source. !/usr/bin/perl Cisco/Protego CS-MARS 4.2.1 remote command execution, system compromise via insecure JBoss installation. Fully functional POC code by Jon Hart [email protected] Addressed in CSCse47646 CS-MARS is an event correlation product orginally written by...

7.1AI score

Exploits0

securityvulns•added 2013/12/09 12:0 a.m.•59 views

Cisco Mars Cross-Site Scripting Vulnerability - CVE-2013-5563

Vulnerability Type: Cross-Site Scripting CVE: CVE-2013-5563 Products and affected versions: Cisco Security Monitoring, Analysis and Response System CS-MARS - All versions Vendor Website: http://www.cisco.com/en/US/products/ps6241/ Cisco Advisory: https://tools.cisco.com/bugsearch/bug/CSCul16173...

4.3CVSS5.5AI score0.00225EPSS

Exploits2

Cvelist•added 2013/11/06 11:0 a.m.•14 views

CVE-2013-5563

Cross-site scripting XSS vulnerability in Query/NewQueryResult.jsp in Cisco Security Monitoring, Analysis and Response System CS-MARS allows remote attackers to inject arbitrary web script or HTML via the isnowLatency parameter, aka Bug ID CSCul16173...

5.6AI score0.00225EPSS

Exploits2References2

CVE•added 2013/11/06 11:0 a.m.•43 views

CVE-2013-5563

CVE-2013-5563 is a cross-site scripting (XSS) vulnerability in Cisco Security Monitoring, Analysis and Response System (CS-MARS). The issue arises because input passed to Query/NewQueryResult.jsp (notably the isnowLatency parameter) is not properly sanitized, allowing an attacker to inject arbitr...

4.3CVSS5.8AI score0.00225EPSS

Exploits2References2Affected Software1

CVE•added 2009/08/27 5:0 p.m.•33 views

CVE-2009-2977

The CVE-2009-2977 entry concerns Cisco CS-MARS (Security Monitoring, Analysis and Response System) 6.0.4 and earlier. The underlying issue is that cleartext passwords are stored in log files (log/sysbacktrace.## files) inside error-logs.tar.gz archives, which could let context-dependent attackers...

3.3CVSS6.2AI score0.00167EPSS

Exploits0References6Affected Software1

Cvelist•added 2009/08/27 5:0 p.m.•13 views

CVE-2009-2977

The Cisco Security Monitoring, Analysis and Response System CS-MARS 6.0.4 and earlier stores cleartext passwords in log/sysbacktrace. files within error-logs.tar.gz archives, which allows context-dependent attackers to obtain sensitive information by reading these files...

6.1AI score0.00167EPSS

Exploits0References6

securityvulns•added 2009/08/25 12:0 a.m.•20 views

Cisco CS-MARS information leak

User's password may be stored in server logs...

1.5AI score

Exploits0References1

securityvulns•added 2009/08/25 12:0 a.m.•77 views

Clear Text Storage of Password in CS-MARS v6.0.4 and Earlier

First after logging onto the console either pnlog mailto, or pnlog scpto will send the logs off of the box to a destination you specify, you can also display the logs using pnlog show. pnadmin$ pnlog scpto [email protected]:/home/ryan scp /tmp/error-logs.tar.gz...

0.3AI score

Exploits0

seebug.org•added 2007/01/22 12:0 a.m.•33 views

Cisco SSL/TLS证书和SSH公共密钥验证漏洞

部分Cisco产品连接不同设备用于配置或监视目的，实际连接方法根据产品不同而分类。但是SSL/TLS和SSH由于起强壮的加密性能确保通信的隐秘性和完整性而最流行使用。如Cisco Security Monitoring, Analysis和Response System CS-MARS用于与IPS探测器和防火墙通信的安全威胁缓解系统security threat mitigation system和Cisco Adaptive Security Device Manager ASDM，它提供对Cisco ASA 5500 Series Adaptive Security...

7.1AI score

Exploits0

CVE•added 2007/01/20 1:0 a.m.•39 views

CVE-2007-0397

The CVE-2007-0397 issue affects Cisco CS-MARS (before 4.2.3) and ASDM (before 5.2(2.54)); both do not validate SSL/TLS certificates or SSH public keys when connecting to devices, enabling remote spoofing to obtain sensitive info or present false data. Cisco’s advisory notes that updated software ...

6.4CVSS6.3AI score0.0034EPSS

Exploits0References8Affected Software1

securityvulns•added 2007/01/20 12:0 a.m.•35 views

Cisco Security Advisory: SSL/TLS Certificate and SSH Public Key Validation Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: SSL/TLS Certificate and SSH Public Key Validation Vulnerability Advisory ID: cisco-sa-20070118-certs http://www.cisco.com/warp/public/707/cisco-sa-20070118-certs.shtml Revision 1.0 For Public Release 2007 January 18 1600 UTC G...

0.6AI score

Exploits0

Saint•added 2006/07/26 12:0 a.m.•26 views

CS-MARS JBoss jmx-console access

Added: 07/26/2006 CVE: CVE-2006-3733 BID: 19075 OSVDB: 27419 Background The Cisco Security Monitoring, Analysis, and Response System CS-MARS recognizes and correlates network attacks. Problem CS-MARS includes the JBoss web application server with insufficient access control to the jmx-console...

7.5CVSS7.2AI score0.16264EPSS

Exploits4

Saint•added 2006/07/26 12:0 a.m.•28 views

CS-MARS JBoss jmx-console access

7.5CVSS7.1AI score0.16264EPSS

Exploits4

Saint•added 2006/07/26 12:0 a.m.•18 views

CS-MARS JBoss jmx-console access

7.5CVSS7.1AI score0.16264EPSS

Exploits4

Saint•added 2006/07/26 12:0 a.m.•35 views

CS-MARS JBoss jmx-console access

7.5CVSS7.2AI score0.16264EPSS

Exploits4

securityvulns•added 2006/07/22 12:0 a.m.•27 views

Cisco Security Advisory: Multiple Vulnerabilities in Cisco Security Monitoring, Analysis and Response System (CS-MARS)

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Cisco Security Advisory: Multiple Vulnerabilities in Cisco Security Monitoring, Analysis and Response System CS-MARS Document ID: 70728 Advisory ID: cisco-sa-20060719-mars http://www.cisco.com/warp/public/707/cisco-sa-20060719-mars.shtml Revision 1.0...

0.8AI score

Exploits0

NVD•added 2006/07/21 2:3 p.m.•10 views

CVE-2006-3732

Cisco Security Monitoring, Analysis and Response System CS-MARS before 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows attackers to obtain sensitive information...

5CVSS6.1AI score0.0054EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by