CVE-2008-3820

medium Cisco
CVSS v3 Base Score
6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P
EPSS Score
1.0%
Exploitation probability in 30 days
Top 23% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
P
Integrity
P
Availability
P
Published: January 22, 2009 (6320 days ago)
Last Modified: April 23, 2026
Vendor: Cisco
Source: NVD

Description

Cisco Security Manager 3.1 and 3.2 before 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote attackers to obtain "root access" to IEV via unspecified use of TCP sessions to these ports.

CWE

NVD-CWE-Other

Affected Products

cisco security manager

References

🔗 secunia.com 🔗 www.cisco.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.vupen.com