← Back

CVE-2008-3820

nvd nist
Published: Jan 22, 2009Modified: Apr 23, 2026

JSON object

Loading...
6.8
Vector
AV:N/AC:M/Au:N/C:P/I:P/A:P
Exploitability: 8.6 / Impact: 6.4
Source: NVD

Description

Cisco Security Manager 3.1 and 3.2 before 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote attackers to obtain "root access" to IEV via unspecified use of TCP sessions to these ports.

Affected (8)

Cisco
1 product
Security Manager
Configuration A
8 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Security Manager
All versions
Security Manager
Version 3.1.1
Security Manager
Version 3.1.1 sp3
Security Manager
Version 3.1
Security Manager
Version 3.2.1
Security Manager
Version 3.2.1 sp1
Security Manager
Version 3.2
Security Manager
Version 3.2 sp2

References (12)

Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
PatchVendor Advisory
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.