CVE-2013-5563
- EPSS 0.23%
- Veröffentlicht 06.11.2013 15:55:06
- Zuletzt bearbeitet 11.04.2025 00:51:21
Cross-site scripting (XSS) vulnerability in Query/NewQueryResult.jsp in Cisco Security Monitoring, Analysis and Response System (CS-MARS) allows remote attackers to inject arbitrary web script or HTML via the isnowLatency parameter, aka Bug ID CSCul1...
CVE-2013-1140
- EPSS 0.38%
- Veröffentlicht 06.03.2013 13:10:25
- Zuletzt bearbeitet 11.04.2025 00:51:21
The XML parser in Cisco Security Monitoring, Analysis, and Response System (MARS) allows remote attackers to read arbitrary files via an external entity declaration in conjunction with an entity reference, related to an XML External Entity (XXE) issu...
CVE-2007-0397
- EPSS 0.33%
- Veröffentlicht 20.01.2007 01:28:00
- Zuletzt bearbeitet 09.04.2025 00:30:58
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.3 and Adaptive Security Device Manager (ASDM) before 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remot...
CVE-2006-3733
- EPSS 17.9%
- Veröffentlicht 21.07.2006 14:03:00
- Zuletzt bearbeitet 03.04.2025 01:03:51
jmx-console/HtmlAdaptor in the jmx-console in the JBoss web application server, as shipped with Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allows remote attackers to gain privileges as the CS-MARS administrator an...