Cisco Security Monitoring Analysis and Response System JBoss Command Execution Vulnerability

Cisco Security Monitoring Analysis and Response System JBoss Command Execution Vulnerability

Cisco Security Monitoring, Analysis and Response System (CS-MARS) is prone to a vulnerability that could permit the execution of arbitrary commands.

An attacker could exploit this issue to execute arbitrary commands with administrative privileges. This may facilitate a remote compromise of the affected appliance.

Cisco has released version 4.2.1 to address this issue; prior versions are reported vulnerable.

This issue was previously discussed in BID 19071 (Cisco Security Monitoring Analysis and Response System Multiple Vulnerabilities), which has subsequently been split into individual records.