CVE-2007-0397
published 2007-01-20CVE-2007-0397: The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.3 and Adaptive Security Device Manager (ASDM) before 5.2(2.54) do not validate…
PriorityP428medium6.4CVSS 2.0
AVNACLAuNCPIPAN
EPSS
2.81%
84.7th percentile
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.3 and Adaptive Security Device Manager (ASDM) before 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote attackers to spoof those devices to obtain sensitive information or generate incorrect information.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | adaptive_security_appliance_device_manager | — | — |
| cisco | security_monitoring_analysis_and_response_system | — | — |
CVSS provenance
nvdv2.06.4MEDIUMAV:N/AC:L/Au:N/C:P/I:P/A:N
vendor_cisco6.4MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco Security Monitoring, Analysis and Response System and Adaptive Security Device Manager Secure Communication Vulnerability
vendor_cisco·2007-01-18·CVSS 6.4
CVE-2007-0397 [MEDIUM] Cisco Security Monitoring, Analysis and Response System and Adaptive Security Device Manager Secure Communication Vulnerability
Cisco Security Monitoring, Analysis and Response System and Adaptive Security Device Manager Secure Communication Vulnerability
Cisco Security Monitoring, Analysis and Response System versions prior to 4.2.3 and Cisco Adaptive Security Device Manager versions prior to 5.2(2.1) contain a vulnerability that could allow an unauthenticated, remote attacker to impersonate a device managed by the system.
The vulnerability exists because the devices to not properly validate SSL/TLS certificates or SSH public keys from managed devices. An unauthenticated, remote attacker could exploit this vulnerability to impersonate devices managed by the system. An attacker could leverage this to gain access to sensitive information, such as authentication credentials, or submit false data to the system.
Explo
GHSA
GHSA-phqx-vrmq-55jr: The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4
ghsa_unreviewed·2022-05-01
CVE-2007-0397 [MEDIUM] GHSA-phqx-vrmq-55jr: The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4
The Cisco Security Monitoring, Analysis and Response System (CS-MARS) before 4.2.3 and Adaptive Security Device Manager (ASDM) before 5.2(2.54) do not validate the SSL/TLS certificates or SSH public keys when connecting to devices, which allows remote attackers to spoof those devices to obtain sensitive information or generate incorrect information.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://osvdb.org/32720http://secunia.com/advisories/23836http://securitytracker.com/id?1017535http://securitytracker.com/id?1017536http://www.cisco.com/en/US/products/products_security_advisory09186a00807c517f.shtmlhttp://www.securityfocus.com/bid/22111http://www.vupen.com/english/advisories/2007/0245https://exchange.xforce.ibmcloud.com/vulnerabilities/31567http://osvdb.org/32720http://secunia.com/advisories/23836http://securitytracker.com/id?1017535http://securitytracker.com/id?1017536http://www.cisco.com/en/US/products/products_security_advisory09186a00807c517f.shtmlhttp://www.securityfocus.com/bid/22111http://www.vupen.com/english/advisories/2007/0245https://exchange.xforce.ibmcloud.com/vulnerabilities/31567
2007-01-20
Published