Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco unified computing system software - vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2017-12349
Multiple vulnerabilities in the web-based management interface of Cisco UCS Central Software could allow a remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the affected interface or hijack a valid session ID from a user of the affected interf...
Cisco Unified Computing System Central Software 2.2\\(1a\\)a
7.5
CVSSv3
CVE-2019-1900
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The vulnerability is due to insuffi...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
8.8
CVSSv3
CVE-2019-1907
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to set sensitive configuration values and gain elevated privileges. The vulnerability is due to improper handling of substring comparison operatio...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.5
CVSSv3
CVE-2019-1908
A vulnerability in the Intelligent Platform Management Interface (IPMI) implementation of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to view sensitive system information. The vulnerability is due to insufficient security res...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
1 Article
6.7
CVSSv3
CVE-2017-12341
A vulnerability in the CLI of Cisco NX-OS System Software could allow an authenticated, local malicious user to perform a command injection attack. An attacker would need valid administrator credentials to perform this exploit. The vulnerability is due to insufficient input valid...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0.59\\)s0
7.2
CVSSv3
CVE-2019-1885
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insufficient validation of ...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
4.4
CVSSv3
CVE-2017-12332
A vulnerability in Cisco NX-OS System Software patch installation could allow an authenticated, local malicious user to write a file to arbitrary locations. The vulnerability is due to insufficient restrictions in the patch installation process. An attacker could exploit this vul...
Cisco Unified Computing System 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(1\\)
Cisco Nx-os 8.1\\(0\\)bd\\(0.20\\)
7.2
CVSSv3
CVE-2019-1896
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject arbitrary commands and obtain root privileges. The vulnerability is due to insufficient validation of user-supplied ...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
8.8
CVSSv3
CVE-2019-1864
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
8.8
CVSSv3
CVE-2019-1865
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »