VIR Vulnerability Intelligence Relay

CVE-2011-2738

critical
Published 2011-09-19 ยท Modified 2026-04-29
๐Ÿ’ฌ Discuss on Community โœš Propose mitigation
CVSS v3
โ€”
CVSS v4 NEW
โ€”
not yet in upstream
VIR risk
10.0

Description

Multiple unspecified vulnerabilities in Cisco Unified Service Monitor before 8.6, as used in Unified Operations Manager before 8.6 and CiscoWorks LAN Management Solution 3.x and 4.x before 4.1; and multiple EMC Ionix products including Application Connectivity Monitor (Ionix ACM) 2.3 and earlier, Adapter for Alcatel-Lucent 5620 SAM EMS (Ionix ASAM) 3.2.0.2 and earlier, IP Management Suite (Ionix IP) 8.1.1.1 and earlier, and other Ionix products; allow remote attackers to execute arbitrary code via crafted packets to TCP port 9002, aka Bug IDs CSCtn42961 and CSCtn64922, related to a buffer overflow.

Predictions

Exploit likelihood
20%
Patch ETA
โ€”

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

No mitigations published for this CVE yet.

The vendor-content worker queues fetches as references arrive (check back in a few minutes). Or โ€” if you've already worked around this in production โ€” publish your fix to the community-verified tier.

โœš Propose a mitigation on Community โ†’ Mitigations published via the community go through AI scoring + 2 human reviewers + 7-day silent objection window before landing here with source_tier=community-verified.

Application impact
VendorProductVersionsFixed
cisco ciscounified_service_monitor{"endIncluding":"8.5"}
cisco ciscounified_service_monitor1.1
cisco ciscounified_service_monitor2.0
cisco ciscounified_service_monitor2.0.1
cisco ciscounified_service_monitor2.1
cisco ciscounified_service_monitor2.2
cisco ciscounified_service_monitor2.3
cisco ciscounified_service_monitor8.0
cisco ciscociscoworks_lan_management_solution3.0
cisco ciscociscoworks_lan_management_solution3.1
cisco ciscociscoworks_lan_management_solution3.2
cisco ciscociscoworks_lan_management_solution4.0
cisco ciscociscoworks_lan_management_solution4.0.1
cisco ciscounified_operations_manager{"endIncluding":"8.5"}
cisco ciscounified_operations_manager1.0
cisco ciscounified_operations_manager1.1
cisco ciscounified_operations_manager2.0
cisco ciscounified_operations_manager2.0.1
cisco ciscounified_operations_manager2.0.2
cisco ciscounified_operations_manager2.0.3
cisco ciscounified_operations_manager2.1
cisco ciscounified_operations_manager2.2
cisco ciscounified_operations_manager2.3
cisco ciscounified_operations_manager8.0
dell emcionix_acm{"endIncluding":"2.3"}
dell emcionix_asam{"endIncluding":"3.2.0.2"}
dell emcionix_ip{"endIncluding":"8.1.1.1"}

References

Community-verified mitigations for this CVE will appear above when contributors publish them.

Verify integrity in audit chain (admin only). AS-IS.