Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system software - vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2012-4074
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle malicious users to obtain sensitive information or modify the data stream by leveraging knowledge...
Cisco Unified Computing System -
6.8
CVSSv2
CVE-2012-4082
MCTools in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to gain privileges by entering crafted command-line parameters on a Fabric Interconnect device, aka Bug ID CSCtg20749.
Cisco Unified Computing System -
4
CVSSv2
CVE-2012-4083
Multiple buffer overflows in the administrative web interface in Cisco Unified Computing System (UCS) allow remote authenticated users to cause a denial of service (memory corruption and session termination) via long string values for unspecified parameters, aka Bug ID CSCtg20751...
Cisco Unified Computing System -
4.6
CVSSv2
CVE-2012-4093
The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via an invalid Smart Call Home contact address, aka Bug ID CSCtl00186.
Cisco Unified Computing System -
4.3
CVSSv2
CVE-2012-4072
The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle malicious users to spoof SSL servers, and read keyboard and mouse events, by leveraging knowledge of this certificate's private key, aka Bug ID C...
Cisco Unified Computing System -
5.8
CVSSv2
CVE-2012-4073
The KVM subsystem in the client in Cisco Unified Computing System (UCS) does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers, and read or modify KVM data, via a crafted certificate, aka Bug ID CSCte90332.
Cisco Unified Computing System -
5
CVSSv2
CVE-2014-3348
The SSH module in the Integrated Management Controller (IMC) prior to 2.3.1 in Cisco Unified Computing System on E-Series blade servers allows remote malicious users to cause a denial of service (IMC hang) via a crafted SSH packet, aka Bug ID CSCuo69206.
Cisco Integrated Management Controller
Cisco Unified Computing System E140d -
Cisco Unified Computing System E140dp -
Cisco Unified Computing System E140s M1 -
Cisco Unified Computing System E140s M2 -
Cisco Unified Computing System E160d -
Cisco Unified Computing System E160dp -
Cisco Unified Computing System En120s M2 -
5.8
CVSSv2
CVE-2017-6604
A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unif...
Cisco Unified Computing System 2.2(8b)
Cisco Unified Computing System 3.1(2c)b
Cisco Unified Computing System 3.0(1c)
5
CVSSv2
CVE-2015-4286
The web framework in Cisco UCS Central Software 1.3(0.99) allows remote malicious users to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuu41377.
Cisco Unified Computing System Central Software 1.3(0.99)
7.5
CVSSv2
CVE-2016-1352
Cisco Unified Computing System (UCS) Central Software 1.3(1b) and previous versions allows remote malicious users to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuv33856.
Cisco Unified Computing System Central Software 1.3(0.1)
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »