Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco ucs director vulnerabilities and exploits

(subscribe to this query)
9.9
CVSSv3
CVE-2018-0238
A vulnerability in the role-based resource checking functionality of the Cisco Unified Computing System (UCS) Director could allow an authenticated, remote malicious user to view unauthorized information for any virtual machine in the UCS Director end-user portal and perform any ...
Cisco Unified Computing System Director 6.5\\(0.1\\)Cisco Unified Computing System Director 6.5\\(0.0\\)
6.1
CVSSv3
CVE-2017-3868
A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. More Information: CSCvc4434...
Cisco Unified Computing System Director 6.0\\(0.0\\)
4.8
CVSSv3
CVE-2018-0149
A vulnerability in the web-based management interface of Cisco Integrated Management Controller Supervisor Software and Cisco UCS Director Software could allow an authenticated, remote malicious user to conduct a Document Object Model-based (DOM-based), stored cross-site scriptin...
Cisco Integrated Management Controller Supervisor 2.1\\(0.2\\)Cisco Integrated Management Controller Supervisor 2.2\\(0.2\\)
NA
CVE-2014-2201
The Message Transfer Service (MTS) in Cisco NX-OS prior to 6.2(7) on MDS 9000 devices and 6.0 prior to 6.0(2) on Nexus 7000 devices allows remote malicious users to cause a denial of service (NULL pointer dereference and kernel panic) via a large volume of crafted traffic, aka Bu...
Cisco Nx-os 6.0\\(1\\)Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nexus 7000 9-slot -Cisco Nexus 7000 18-slot -Cisco Nx-osCisco Nx-os 6.2\\(5\\)Cisco Nx-os 6.2\\(3n\\)Cisco Nx-os 6.2\\(1n\\)Cisco Nx-os 6.2\\(3\\)Cisco Nx-os 6.2\\(1\\)Cisco Mds 9100 -Cisco Mds 9000
NA
CVE-2013-1191
Cisco NX-OS 6.1 prior to 6.1(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via crafted SSH key data in an SSH session to a management interface, aka Bug ID CSCud8840...
Cisco Nx-os 6.1\\(4a\\)Cisco Nx-os 6.1\\(4\\)Cisco Nx-os 6.1Cisco Nx-os 6.1\\(1\\)Cisco Nx-os 6.1\\(3\\)Cisco Nx-os 6.1\\(2\\)Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nexus 7000 18-slot -Cisco Nexus 7000 9-slot -
NA
CVE-2014-2200
Cisco NX-OS 5.0 prior to 5.0(5) on Nexus 7000 devices, when local authentication and multiple VDCs are enabled, allows remote authenticated users to gain privileges within an unintended VDC via an SSH session to a management interface, aka Bug ID CSCti11629.
Cisco Nx-os 5.0\\(3\\)u1\\(1d\\)Cisco Nx-os 5.0\\(3\\)u1\\(2\\)Cisco Nx-os 5.0\\(3\\)u1\\(2a\\)Cisco Nx-os 5.0\\(3\\)u2\\(1\\)Cisco Nx-os 5.0\\(3\\)u2\\(2\\)Cisco Nx-os 5.0\\(3\\)u5\\(1c\\)Cisco Nx-os 5.0\\(3\\)u5\\(1d\\)Cisco Nx-os 5.0\\(3\\)u5\\(1e\\)Cisco Nx-os 5.0\\(3\\)n1\\(1b\\)Cisco Nx-os 5.0\\(3\\)n1\\(1c\\)Cisco Nx-os 5.0\\(3\\)n2\\(1\\)Cisco Nx-os 5.0\\(3\\)n2\\(2\\)Cisco Nx-os 5.0\\(3\\)u3\\(1\\)Cisco Nx-os 5.0\\(3\\)u3\\(2\\)Cisco Nx-os 5.0\\(3\\)u3\\(2a\\)Cisco Nx-os 5.0\\(3\\)u3\\(2b\\)Cisco Nx-os 5.0\\(3\\)n1\\(1a\\)Cisco Nx-os 5.0\\(3\\)n2\\(2a\\)Cisco Nx-os 5.0\\(3\\)u1\\(1a\\)Cisco Nx-os 5.0\\(3\\)u2\\(2a\\)Cisco Nx-os 5.0\\(3\\)u2\\(2c\\)Cisco Nx-os 5.0\\(3\\)u5\\(1\\)
NA
CVE-2014-3261
Buffer overflow in the Smart Call Home implementation in Cisco NX-OS on Fabric Interconnects in Cisco Unified Computing System 1.4 prior to 1.4(1i), NX-OS 5.0 prior to 5.0(3)U2(2) on Nexus 3000 devices, NX-OS 4.1 prior to 4.1(2)E1(1l) on Nexus 4000 devices, NX-OS 5.x prior to 5.1...
Cisco Unified Computing System 6248up Fabric Interconnect -Cisco Unified Computing System 6296up Fabric Interconnect -Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(1j\\)Cisco Unified Computing System 6140xp Fabric Interconnect -Cisco Unified Computing System 6120xp Fabric Interconnect -Cisco Cg-os Cg4\\(1\\)Cisco Cg-os Cg4Cisco Cgr 1120 -Cisco Cgr 1240 -Cisco Nx-os 5.2Cisco Nx-os 5.2\\(1\\)Cisco Nx-os 5.2\\(3\\)Cisco Nexus 7000 18-slot -Cisco Nexus 7000 9-slot -Cisco Nexus 7000 -Cisco Nexus 7000 10-slot -Cisco Nx-os 5.0\\(2\\)n2\\(1a\\)Cisco Nx-os 5.0\\(2a\\)Cisco Nx-os 5.0\\(3\\)Cisco Nx-os 5.0\\(3\\)n1\\(1\\)Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4\\(1j\\)Cisco Nx-os -
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0Apache Log4jSiemens Sppa-t3000 Ses3000 FirmwareSiemens Logo\\! Soft ComfortSiemens Spectrum Power 4 4.70Siemens Spectrum Power 4Siemens Siveillance Control ProSiemens Energyip Prepay 3.7Siemens Energyip Prepay 3.8Siemens Siveillance Identity 1.6Siemens Siveillance Identity 1.5Siemens Siveillance CommandSiemens Sipass Integrated 2.85Siemens Sipass Integrated 2.80Siemens Head-end System Universal Device Integration SystemSiemens Gma-managerSiemens Energyip 8.5Siemens Energyip 8.6Siemens Energyip 8.7Siemens Energyip 9.0Siemens Energy Engage 3.1Siemens E-car Operation Center
6.5
CVSSv3
CVE-2018-0331
A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running, or based on, Cisco NX-OS Software contain a vulnerability that could allow an unauthenticated, adjacent malicious user to create a denial of service (DoS) condition. The vulnerab...
Cisco Nx-osCisco Nx-os 6.0Cisco Nx-os 7.0Cisco Nx-os 7.2Cisco Nx-os 8.0Cisco Firepower Extensible Operating SystemCisco Fxos
7.5
CVSSv3
CVE-2021-33193
A crafted method sent through HTTP/2 will bypass validation and be forwarded by mod_proxy, which can lead to request splitting or cache poisoning. This issue affects Apache HTTP Server 2.4.17 to 2.4.48.
Apache Http ServerFedoraproject Fedora 34Fedoraproject Fedora 35Tenable Tenable.scOracle Zfs Storage Appliance Kit 8.8Oracle Secure Backup
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675CVE-2024-3400CVE-2024-23557mass assignmentCVE-2023-1389local file inclusionCVE-2024-32596file uploadCVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook