Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system - vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-4279
The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) on B Blade Server devices allows local users to gain privileges for executing arbitrary CLI commands by leveraging access to the subordinate fabric interconnect, aka Bug ID CSCut32778.
Cisco Unified Computing System 2.2\\(3b\\)
NA
CVE-2014-8003
Cisco Integrated Management Controller in Cisco Unified Computing System 2.2(2c)A and previous versions allows local users to obtain shell access via a crafted map-nfs command, aka Bug ID CSCup05998.
Cisco Unified Computing System
NA
CVE-2012-4084
Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCtg20755.
Cisco Unified Computing System -
8.1
CVSSv3
CVE-2019-1863
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to make unauthorized changes to the system configuration. The vulnerability is due to insufficient authorization enfo...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
1 Article
6.1
CVSSv3
CVE-2017-3868
A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. More Information: CSCvc4434...
Cisco Unified Computing System Director 6.0\\(0.0\\)
NA
CVE-2014-7996
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCuq45477.
Cisco Unified Computing System -
7.5
CVSSv3
CVE-2015-0718
Cisco NX-OS 4.0 up to and including 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote malicious users to cause a denial of service (TCP stack reload) by sending crafted TCP packets to a device that has a TIME_WA...
Cisco Unified Computing System 1.5\\\\\\(3\\\\\\)
Cisco Unified Computing System 1.5 Base
Cisco Unified Computing System 2.1 3f
Cisco Unified Computing System 2.1 3e
Cisco Unified Computing System 2.1 2a
Cisco Unified Computing System 2.1 1f
Cisco Unified Computing System 2.0 5b
Cisco Unified Computing System 2.0 5a
Cisco Unified Computing System 2.0 2r
Cisco Unified Computing System 2.0 2q
Cisco Unified Computing System 1.4 4k
Cisco Unified Computing System 1.4 4j
Cisco Unified Computing System 1.4 3m
Cisco Unified Computing System 1.4 3l
Cisco Unified Computing System 1.4 1i
Cisco Nx-os 1000v Switch 4.0\\\\\\(4\\\\\\)sv1\\\\\\(3c\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)n2\\\\\\(6\\\\\\)
Cisco Unified Computing System 2.2 2e
Cisco Unified Computing System 2.2 2d
Cisco Unified Computing System 2.1 3d
Cisco Unified Computing System 2.1 3c
Cisco Unified Computing System 2.1 1e
NA
CVE-2015-4286
The web framework in Cisco UCS Central Software 1.3(0.99) allows remote malicious users to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuu41377.
Cisco Unified Computing System Central Software 1.3\\(0.99\\)
6.1
CVSSv3
CVE-2016-1401
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Computing System (UCS) Central Software 1.4(1a) allows remote malicious users to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCuy91250.
Cisco Unified Computing System Central Software 1.4\\(1a\\)
9.8
CVSSv3
CVE-2016-1352
Cisco Unified Computing System (UCS) Central Software 1.3(1b) and previous versions allows remote malicious users to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuv33856.
Cisco Unified Computing System Central Software 1.3\\(0.1\\)
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »