Unrated severityNVD Advisory· Published Jan 22, 2009· Updated Apr 23, 2026

CVE-2008-3820

Description

Cisco Security Manager 3.1 and 3.2 before 3.2.2, when Cisco IPS Event Viewer (IEV) is used, exposes TCP ports used by the MySQL daemon and IEV server, which allows remote attackers to obtain "root access" to IEV via unspecified use of TCP sessions to these ports.

Affected products

Cisco Systems, Inc./Security Manager8 versions
cpe:2.3:a:cisco:security_manager:*:*:*:*:*:*:*:*+ 7 more
- cpe:2.3:a:cisco:security_manager:*:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.1.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.1.1:sp3:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.2:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.2.1:*:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.2.1:sp1:*:*:*:*:*:*
- cpe:2.3:a:cisco:security_manager:3.2:sp2:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.cisco.com/en/US/products/products_security_advisory09186a0080a6192a.shtmlnvdPatchVendor Advisory
secunia.com/advisories/33633nvdVendor Advisory
www.securityfocus.com/bid/33381nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2009/0214nvd
exchange.xforce.ibmcloud.com/vulnerabilities/48134nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000