3 matches found
CVE-2019-1715
CVE-2019-1715 affects Cisco ASA Software and Cisco Firepower Threat Defense (FTD)Software. The issue is a low-entropy Deterministic Random Bit Generator (DRBG/PRNG) used for cryptographic key generation, which can allow an unauthenticated remote attacker to cause cryptographic collisions and pote...
CVE-2013-1192
CVE-2013-1192 affects Cisco Device Manager (Java-based JNLP launcher) for Cisco MDS 9000 family (pre-5.2.8) and Cisco Nexus 5000. The issue enables remote attackers to execute arbitrary commands on Windows client machines via a crafted element-manager.jnlp file. Root cause: JAR-based code executi...
CVE-2007-0397
The CVE-2007-0397 issue affects Cisco CS-MARS (before 4.2.3) and ASDM (before 5.2(2.54)); both do not validate SSL/TLS certificates or SSH public keys when connecting to devices, enabling remote spoofing to obtain sensitive info or present false data. Cisco’s advisory notes that updated software ...