Multiple unspecified vulnerabilities in the Command Line Interface (CLI) for Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1, allow local CS-MARS administrators to execute arbitrary commands as root.
Max CVSS
7.2
EPSS Score
0.07%
Published
2006-07-21
Updated
2017-07-20
Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.1 ships with an Oracle database that contains several default accounts and passwords, which allows attackers to obtain sensitive information.
Max CVSS
5.0
EPSS Score
0.61%
Published
2006-07-21
Updated
2017-07-20
Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.1.3 has an undocumented administrative account with a default password, which allows local users to gain privileges via the expert command.
Max CVSS
7.2
EPSS Score
0.06%
Published
2006-01-12
Updated
2017-07-20
3 vulnerabilities found