Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2014-8003
Cisco Integrated Management Controller in Cisco Unified Computing System 2.2(2c)A and previous versions allows local users to obtain shell access via a crafted map-nfs command, aka Bug ID CSCup05998.
Cisco Unified Computing System
7.2
CVSSv2
CVE-2015-4279
The Manager component in Cisco Unified Computing System (UCS) 2.2(3b) on B Blade Server devices allows local users to gain privileges for executing arbitrary CLI commands by leveraging access to the subordinate fabric interconnect, aka Bug ID CSCut32778.
Cisco Unified Computing System 2.2\\(3b\\)
6.8
CVSSv2
CVE-2012-4084
Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCtg20755.
Cisco Unified Computing System -
9
CVSSv2
CVE-2019-1863
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to make unauthorized changes to the system configuration. The vulnerability is due to insufficient authorization enfo...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
1 Article
4.3
CVSSv2
CVE-2017-3868
A vulnerability in the web-based management interface of Cisco UCS Director could allow an unauthenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device. More Information: CSCvc4434...
Cisco Unified Computing System Director 6.0\\(0.0\\)
6.8
CVSSv2
CVE-2014-7996
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCuq45477.
Cisco Unified Computing System -
7.8
CVSSv2
CVE-2015-0718
Cisco NX-OS 4.0 up to and including 6.1 on Nexus 1000V 3000, 4000, 5000, 6000, and 7000 devices and Unified Computing System (UCS) platforms allows remote malicious users to cause a denial of service (TCP stack reload) by sending crafted TCP packets to a device that has a TIME_WA...
Cisco Unified Computing System 1.5\\\\\\(3\\\\\\)
Cisco Unified Computing System 1.5 Base
Cisco Unified Computing System 2.1 3f
Cisco Unified Computing System 2.1 3e
Cisco Unified Computing System 2.1 2a
Cisco Unified Computing System 2.1 1f
Cisco Unified Computing System 2.0 5b
Cisco Unified Computing System 2.0 5a
Cisco Unified Computing System 2.0 2r
Cisco Unified Computing System 2.0 2q
Cisco Unified Computing System 1.4 4k
Cisco Unified Computing System 1.4 4j
Cisco Unified Computing System 1.4 3m
Cisco Unified Computing System 1.4 3l
Cisco Unified Computing System 1.4 1i
Cisco Nx-os 1000v Switch 4.0\\\\\\(4\\\\\\)sv1\\\\\\(3c\\\\\\)
Cisco Nx-os 6.0\\\\\\(2\\\\\\)n2\\\\\\(6\\\\\\)
Cisco Unified Computing System 2.2 2e
Cisco Unified Computing System 2.2 2d
Cisco Unified Computing System 2.1 3d
Cisco Unified Computing System 2.1 3c
Cisco Unified Computing System 2.1 1e
5
CVSSv2
CVE-2015-4286
The web framework in Cisco UCS Central Software 1.3(0.99) allows remote malicious users to read arbitrary files via a crafted HTTP request, aka Bug ID CSCuu41377.
Cisco Unified Computing System Central Software 1.3\\(0.99\\)
7.5
CVSSv2
CVE-2016-1352
Cisco Unified Computing System (UCS) Central Software 1.3(1b) and previous versions allows remote malicious users to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuv33856.
Cisco Unified Computing System Central Software 1.3\\(0.1\\)
1 Article
4.3
CVSSv2
CVE-2016-1401
Cross-site scripting (XSS) vulnerability in the management interface in Cisco Unified Computing System (UCS) Central Software 1.4(1a) allows remote malicious users to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCuy91250.
Cisco Unified Computing System Central Software 1.4\\(1a\\)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »