Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
enterprise network compute system vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2019-1896
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject arbitrary commands and obtain root privileges. The vulnerability is due to insufficient validation of user-supplied ...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.2
CVSSv3
CVE-2019-1634
A vulnerability in the Intelligent Platform Management Interface (IPMI) of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on the underlying operating system (OS)....
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
8.8
CVSSv3
CVE-2019-1864
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
8.8
CVSSv3
CVE-2019-1865
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject arbitrary commands that are executed with root privileges on an affected device. The vulnerability is due t...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.2
CVSSv3
CVE-2019-1871
A vulnerability in the Import Cisco IMC configuration utility of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition and implement arbitrary commands with root privileges on an affected devi...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
4.3
CVSSv3
CVE-2019-12623
A vulnerability in the web server functionality of Cisco Enterprise Network Functions Virtualization Infrastructure Software (NFVIS) could allow an authenticated, remote malicious user to perform file enumeration on an affected system. The vulnerability is due to the web server r...
Cisco Enterprise Network Functions Virtualization Infrastructure
8.8
CVSSv3
CVE-2018-0430
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insu...
Cisco Unified Computing System 3.1\\(3\\)
Cisco Unified Computing System 3.0\\(3a\\)
Cisco Unified Computing System 2.0 Base
8.8
CVSSv3
CVE-2018-0431
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insu...
Cisco Unified Computing System 3.0\\(3a\\)
Cisco Unified Computing System 3.1\\(3\\)
Cisco Unified Computing System 2.0 Base
9.8
CVSSv3
CVE-2020-3470
Multiple vulnerabilities in the API subsystem of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to execute arbitrary code with root privileges. The vulnerabilities are due to improper boundary checks for certain user-supplied in...
Cisco Enterprise Nfv Infrastructure Software
Cisco Integrated Management Controller
NA
CVE-2020-26063
A vulnerability in the API endpoints of Cisco Integrated Management Controller could allow an authenticated, remote attacker to bypass authorization and take actions on a vulnerable system without authorization. The vulnerability is due to improper authorization checks on API end...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »