Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system software - vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2017-12348
Multiple vulnerabilities in the web-based management interface of Cisco UCS Central Software could allow a remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the affected interface or hijack a valid session ID from a user of the affected interf...
Cisco Unified Computing System Central Software 2.2\\(1a\\)a
5
CVSSv2
CVE-2019-1908
A vulnerability in the Intelligent Platform Management Interface (IPMI) implementation of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to view sensitive system information. The vulnerability is due to insufficient security res...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
1 Article
6.5
CVSSv2
CVE-2019-1907
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to set sensitive configuration values and gain elevated privileges. The vulnerability is due to improper handling of substring comparison operatio...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.8
CVSSv2
CVE-2019-1900
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The vulnerability is due to insuffi...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.2
CVSSv2
CVE-2017-12341
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local malicious user to perform a command injection attack. An attacker would need valid administrator credentials to perform this exploit. The vulnerability is due to insufficient input valid...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0.59\\)s0
4.9
CVSSv2
CVE-2017-12332
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local malicious user to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vul...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
9
CVSSv2
CVE-2019-1885
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of ...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
9
CVSSv2
CVE-2019-1865
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
9
CVSSv2
CVE-2019-1864
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
9
CVSSv2
CVE-2019-1871
A vulnerability in the Import Cisco IMC configuration utility of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition and implement arbitrary commands with root privileges on an affected devi...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »