Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco integrated management controller vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2020-3470
Multiple vulnerabilities in the API subsystem of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to execute arbitrary code with root privileges. The vulnerabilities are due to improper boundary checks for certain user-supplied in...
Cisco Enterprise Nfv Infrastructure Software
Cisco Integrated Management Controller
10
CVSSv2
CVE-2019-1935
A vulnerability in Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote malicious user to log in to the CLI of an affected system by using the SCP User account (scpuser), wh...
Cisco Integrated Management Controller Supervisor
Cisco Integrated Management Controller Supervisor 2.1.0.0
Cisco Ucs Director 6.7\\(0.0.67265\\)
Cisco Ucs Director 6.0.0.0
Cisco Ucs Director 6.5.0.0
Cisco Ucs Director 6.6.0.0
Cisco Ucs Director 6.6.1.0
Cisco Ucs Director 6.7.0.0
Cisco Ucs Director 6.7.1.0
Cisco Ucs Director Express For Big Data 3.6.0.0
Cisco Ucs Director Express For Big Data 3.0.0.0
Cisco Ucs Director Express For Big Data 3.5.0.0
Cisco Ucs Director Express For Big Data 3.7.0.0
Cisco Ucs Director Express For Big Data 3.7.1.0
1 EDB exploit
1 Article
10
CVSSv2
CVE-2019-1974
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote malicious user to bypass user authentication and gain access as...
Cisco Integrated Management Controller Supervisor 2.1.0.0
Cisco Integrated Management Controller Supervisor
Cisco Ucs Director
Cisco Ucs Director 6.7\\(1.1\\)
Cisco Ucs Director 6.7\\(2.0\\)
Cisco Ucs Director Express For Big Data
Cisco Ucs Director Express For Big Data 3.6.1.0
Cisco Ucs Director Express For Big Data 3.6.0.0
1 Article
10
CVSSv2
CVE-2019-1937
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow an unauthenticated, remote malicious user to acquire a valid session token with administra...
Cisco Integrated Management Controller Supervisor
Cisco Ucs Director
Cisco Ucs Director 6.7\\(0.0.67265\\)
Cisco Ucs Director Express For Big Data 3.6.0.0
Cisco Ucs Director Express For Big Data
1 EDB exploit
2 Metasploit modules
1 Article
9.4
CVSSv2
CVE-2015-6259
The JavaServer Pages (JSP) component in Cisco Integrated Management Controller (IMC) Supervisor prior to 1.0.0.1 and UCS Director (formerly Cloupia Unified Infrastructure Controller) prior to 5.2.0.1 allows remote malicious users to write to arbitrary files via crafted HTTP reque...
Cisco Integrated Management Controller Supervisor
Cisco Unified Computing System Director 4.0 Base
Cisco Unified Computing System Director 5.0.0.0
Cisco Unified Computing System Director
Cisco Unified Computing System Director 5.0.0.1
Cisco Unified Computing System Director 5.0.0.2
Cisco Unified Computing System Director 5.0.0.3
Cisco Unified Computing System Director 5.1.0.1
Cisco Unified Computing System Director 3.4 Base
Cisco Unified Computing System Director 4.1 Base
Cisco Unified Computing System Director 5.1.0.0
9.3
CVSSv2
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1162 Github repositories
28 Articles
9
CVSSv2
CVE-2020-3371
A vulnerability in the web UI of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject arbitrary code and execute arbitrary commands at the underlying operating system level. The vulnerability is due to insufficient input valid...
Cisco Integrated Management Controller
9
CVSSv2
CVE-2019-1850
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. An attacker would need to ...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
9
CVSSv2
CVE-2019-1864
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
9
CVSSv2
CVE-2019-1865
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »