Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco integrated management controller vulnerabilities and exploits
(subscribe to this query)
7.4
CVSSv3
CVE-2021-1439
A vulnerability in the multicast DNS (mDNS) gateway feature of Cisco Aironet Series Access Points Software could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input v...
Cisco Aironet Access Point Software -
Cisco Catalyst 9800 Firmware
NA
CVE-2015-0633
The Integrated Management Controller (IMC) in Cisco Unified Computing System (UCS) 1.4(7h) and previous versions on C-Series servers allows remote malicious users to bypass intended access restrictions by sending crafted DHCP response packets on the local network, aka Bug ID CSCu...
Cisco Unified Computing System 1.4
Cisco Unified Computing System 1.4(1c)
Cisco Unified Computing System 1.4(2)
Cisco Unified Computing System 1.4(3c)1
Cisco Unified Computing System 1.4(3c)2
Cisco Unified Computing System 1.4(3j)
Cisco Unified Computing System 1.4(3k)
Cisco Unified Computing System 1.4(3p)
Cisco Unified Computing System 1.4(3p)5
Cisco Unified Computing System 1.4(3s)
Cisco Unified Computing System 1.4(4a)
Cisco Unified Computing System 1.4(4a)1
Cisco Unified Computing System 1.4(5b)1
Cisco Unified Computing System 1.4(5e)
Cisco Unified Computing System 1.4(5g)
Cisco Unified Computing System 1.4(5g)2
Cisco Unified Computing System 1.4(5h)
Cisco Unified Computing System 1.4(5j)
Cisco Unified Computing System 1.4(6c)
Cisco Unified Computing System 1.4(6d)
Cisco Unified Computing System 1.4(7b)1
Cisco Unified Computing System 1.4(7c)1
NA
CVE-2013-1186
Cisco Unified Computing System (UCS) 1.x prior to 1.4(4) and 2.x prior to 2.0(2m) allows remote malicious users to bypass KVM authentication via a crafted authentication request to a Cisco Integrated Management Controller (IMC), aka Bug ID CSCts53746.
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.0
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.0(2k)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.1
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.1(1m)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2(1)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2(1a)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.2(1d)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1c)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1m)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1n)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1o)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1p)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1q)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1t)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1w)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.3(1y)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4(1j)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4(1m)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4(3i)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4(3l)
Cisco Unified Computing System Infrastructure And Unified Computing System Software 1.4(3m)
6.1
CVSSv3
CVE-2017-6604
A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unif...
Cisco Unified Computing System 2.2(8b)
Cisco Unified Computing System 3.1(2c)b
Cisco Unified Computing System 3.0(1c)
6.5
CVSSv3
CVE-2019-5108
An exploitable denial-of-service vulnerability exists in the Linux kernel prior to mainline 5.3. An attacker could exploit this vulnerability by triggering AP to send IAPP location updates for stations before the required authentication process has completed. This could lead to d...
Linux Linux Kernel
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Netapp Cloud Backup -
Netapp Steelstore Cloud Integrated Storage -
Netapp Data Availability Services -
Netapp Solidfire -
Netapp Hci Management Node -
Netapp Active Iq Unified Manager -
Netapp E-series Santricity Os Controller
Netapp A700s Firmware -
Netapp H610s Firmware -
Netapp 8300 Firmware -
Netapp 8700 Firmware -
Netapp A400 Firmware -
Oracle Sd-wan Edge 8.2
6.7
CVSSv3
CVE-2021-1281
A vulnerability in CLI management in Cisco IOS XE SD-WAN Software could allow an authenticated, local malicious user to access the underlying operating system as the root user. This vulnerability is due to the way the software handles concurrent CLI sessions. An attacker could ex...
Cisco Ios Xe 16.9.1
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.9.2
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.11.1
Cisco Ios Xe 17.1.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.12.1c
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.11.2
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.12.1a
Cisco Ios Xe 16.12.1x
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.11.1s
Cisco Ios Xe 16.12.1w
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.1d
Cisco Ios Xe 16.10.1a
Cisco Ios Xe 16.10.1f
Cisco Ios Xe 16.10.1g
NA
CVE-2013-1190
The C-Series Rack Server component 1.4 in Cisco Unified Computing System (UCS) does not properly restrict inbound access to ports, which allows remote malicious users to cause a denial of service (Integrated Management Controller reboot or hang) via crafted packets, as demonstrat...
Cisco Unified Computing System -
5.9
CVSSv3
CVE-2021-45105
Apache Log4j2 versions 2.0-alpha1 up to and including 2.16.0 (excluding 2.12.3 and 2.3.1) did not protect from uncontrolled recursion from self-referential lookups. This allows an attacker with control over Thread Context Map data to cause a denial of service when a crafted strin...
Apache Log4j
Netapp Cloud Manager -
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Sonicwall Network Security Manager
Sonicwall Email Security
Sonicwall Web Application Firewall
Sonicwall 6bk1602-0aa12-0tp0 Firmware
Sonicwall 6bk1602-0aa22-0tp0 Firmware
Sonicwall 6bk1602-0aa32-0tp0 Firmware
Sonicwall 6bk1602-0aa42-0tp0 Firmware
Sonicwall 6bk1602-0aa52-0tp0 Firmware
Oracle E-business Suite 12.2
Oracle Retail Back Office 14.1
Oracle Weblogic Server 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Webcenter Sites 12.2.1.3.0
Oracle Managed File Transfer 12.2.1.3.0
Oracle Retail Order Broker 16.0
Oracle Retail Integration Bus 14.1.3
Oracle Retail Returns Management 14.1
Oracle Retail Central Office 14.1
74 Github repositories
5 Articles
NA
CVE-2015-4259
The Integrated Management Controller on Cisco Unified Computing System (UCS) C servers with software 1.5(3) and 1.6(0.16) has a default SSL certificate, which makes it easier for man-in-the-middle malicious users to bypass cryptographic protection mechanisms by leveraging knowled...
Cisco Unified Computing System 1.6(0.16)
Cisco Unified Computing System 1.5(3)
6.6
CVSSv3
CVE-2021-44832
Apache Log4j2 versions 2.0-beta7 up to and including 2.17.0 (excluding security fix releases 2.3.2 and 2.12.4) are vulnerable to a remote code execution (RCE) attack when a configuration uses a JDBC Appender with a JNDI LDAP data source URI when an attacker has control of the tar...
Apache Log4j 2.0
Apache Log4j
Oracle Weblogic Server 12.2.1.3.0
Oracle Primavera Unifier 18.8
Oracle Weblogic Server 12.2.1.4.0
Oracle Primavera Unifier 19.12
Oracle Weblogic Server 14.1.1.0.0
Oracle Primavera Unifier 20.12
Oracle Communications Interactive Session Recorder 6.3
Oracle Communications Interactive Session Recorder 6.4
Oracle Primavera Gateway
Oracle Retail Assortment Planning 16.0.3
Oracle Primavera Unifier 21.12
Oracle Primavera P6 Enterprise Project Portfolio Management 21.12.0.0
Oracle Primavera P6 Enterprise Project Portfolio Management
Oracle Primavera Gateway 21.12.0
Oracle Retail Fiscal Management 14.2
Oracle Siebel Ui Framework 21.12
Oracle Communications Diameter Signaling Router
Cisco Cloudcenter 4.10.0.16
Fedoraproject Fedora 34
Fedoraproject Fedora 35
34 Github repositories
4 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
TCP
CVE-2024-4577
CVE-2024-2695
CVE-2024-31870
injection
CVE-2024-3813
arbitrary code
CVE-2024-27801
CVE-2024-30120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »