Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system - vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2012-4092
The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle malicious users to read or modify an inter-device data stream by spoofing an identity, ak...
Cisco Unified Computing System -
4.6
CVSSv2
CVE-2012-4107
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary commands via crafted parameters to a file-related command, aka Bug ID CSCtq86489.
Cisco Unified Computing System -
5
CVSSv2
CVE-2012-4079
The XML API service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) allows remote malicious users to cause a denial of service (API service outage) via a malformed XML document in a packet, aka Bug ID CSCtg48206.
Cisco Unified Computing System -
5
CVSSv2
CVE-2012-4085
The Intelligent Platform Management Interface (IPMI) implementation in the Blade Management Controller in Cisco Unified Computing System (UCS) allows remote malicious users to enumerate valid usernames by observing IPMI interface responses, aka Bug ID CSCtg20761.
Cisco Unified Computing System -
5.1
CVSSv2
CVE-2012-4086
A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote malicious users to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20790.
Cisco Unified Computing System -
6.6
CVSSv2
CVE-2012-4089
MCTOOLS in the fabric interconnect in Cisco Unified Computing System (UCS) allows local users to execute arbitrary Baseboard Management Controller (BMC) commands by leveraging (1) local, (2) shell-level, or (3) debug-level privileges at the operating-system layer, aka Bug ID CSCt...
Cisco Unified Computing System -
5.5
CVSSv2
CVE-2012-4095
The local file editor in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges, and read or modify arbitrary files, via unspecified key bindings, aka Bug ID CSCtn04521.
Cisco Unified Computing System -
6.8
CVSSv2
CVE-2012-4102
The activate firmware command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq02600.
Cisco Unified Computing System -
6.6
CVSSv2
CVE-2012-4104
Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706.
Cisco Unified Computing System -
4.6
CVSSv2
CVE-2012-4105
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (component crash) via crafted "debug hardware" parameters, aka Bug ID CSCtq86468.
Cisco Unified Computing System -
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »