Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system software - vulnerabilities and exploits
(subscribe to this query)
6.6
CVSSv2
CVE-2012-4089
MCTOOLS in the fabric interconnect in Cisco Unified Computing System (UCS) allows local users to execute arbitrary Baseboard Management Controller (BMC) commands by leveraging (1) local, (2) shell-level, or (3) debug-level privileges at the operating-system layer, aka Bug ID CSCt...
Cisco Unified Computing System -
5.1
CVSSv2
CVE-2012-4087
A cluster setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote malicious users to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20793.
Cisco Unified Computing System -
5.8
CVSSv2
CVE-2012-4092
The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle malicious users to read or modify an inter-device data stream by spoofing an identity, ak...
Cisco Unified Computing System -
5
CVSSv2
CVE-2012-4085
The Intelligent Platform Management Interface (IPMI) implementation in the Blade Management Controller in Cisco Unified Computing System (UCS) allows remote malicious users to enumerate valid usernames by observing IPMI interface responses, aka Bug ID CSCtg20761.
Cisco Unified Computing System -
4.3
CVSSv2
CVE-2012-4088
The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an unspecified user account, which makes it easier for remote malicious users to read or modify files by leveraging knowledge of this password, aka Bug ID CSCtg20769.
Cisco Unified Computing System -
4.6
CVSSv2
CVE-2012-4105
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (component crash) via crafted "debug hardware" parameters, aka Bug ID CSCtq86468.
Cisco Unified Computing System -
6.8
CVSSv2
CVE-2012-4106
The fabric-interconnect component in Cisco Unified Computing System (UCS) uses the same privilege level for execution of every script, which allows local users to gain privileges and execute arbitrary commands via an unspecified script-execution approach, aka Bug ID CSCtq86477.
Cisco Unified Computing System -
4.6
CVSSv2
CVE-2012-4107
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary commands via crafted parameters to a file-related command, aka Bug ID CSCtq86489.
Cisco Unified Computing System -
6.5
CVSSv2
CVE-2012-1313
The remote debug shell on the PALO adapter card in Cisco Unified Computing System (UCS) allows local users to gain privileges via malformed show-macstats parameters, aka Bug ID CSCub13772.
Cisco Unified Computing System -
5.5
CVSSv2
CVE-2012-4095
The local file editor in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges, and read or modify arbitrary files, via unspecified key bindings, aka Bug ID CSCtn04521.
Cisco Unified Computing System -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »