Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
integrated management controller vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-3470
Multiple vulnerabilities in the API subsystem of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to execute arbitrary code with root privileges. The vulnerabilities are due to improper boundary checks for certain user-supplied in...
Cisco Enterprise Nfv Infrastructure Software
Cisco Integrated Management Controller
7.5
CVSSv3
CVE-2021-34736
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to cause the web-based management interface to unexpectedly restart. The vulnerability is due to insufficient input...
Cisco Unified Computing System
NA
CVE-2024-20356
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker with Administrator-level privileges to perform command injection attacks on an affected system and elevate their privileges to root....
1 Github repository
7.2
CVSSv3
CVE-2019-1896
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject arbitrary commands and obtain root privileges. The vulnerability is due to insufficient validation of user-supplied ...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.5
CVSSv3
CVE-2019-1900
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote malicious user to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The vulnerability is due to insuffi...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
8.8
CVSSv3
CVE-2019-1907
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to set sensitive configuration values and gain elevated privileges. The vulnerability is due to improper handling of substring comparison operatio...
Cisco Unified Computing System 4.0\\(1c\\)hs3
Cisco Integrated Management Controller Supervisor
7.5
CVSSv3
CVE-2019-19069
A memory leak in the fastrpc_dma_buf_attach() function in drivers/misc/fastrpc.c in the Linux kernel prior to 5.3.9 allows malicious users to cause a denial of service (memory consumption) by triggering dma_get_sgtable() failures, aka CID-fc739a058d99.
Linux Linux Kernel
Linux Linux Kernel 5.4
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Netapp Active Iq Unified Manager -
Netapp Data Availability Services -
Netapp E-series Santricity Os Controller
Netapp Hci Management Node -
Netapp Solidfire -
Netapp Steelstore Cloud Integrated Storage -
Netapp Hci Compute Node -
Netapp Hci Storage Node -
Broadcom Fabric Operating System -
Netapp Aff A700s Firmware -
Netapp Fas8300 Firmware -
Netapp Fas8700 Firmware -
Netapp Aff A400 Firmware -
Netapp H610s Firmware -
NA
CVE-2014-3348
The SSH module in the Integrated Management Controller (IMC) prior to 2.3.1 in Cisco Unified Computing System on E-Series blade servers allows remote malicious users to cause a denial of service (IMC hang) via a crafted SSH packet, aka Bug ID CSCuo69206.
Cisco Integrated Management Controller
Cisco Unified Computing System E140s M1 -
Cisco Unified Computing System E140s M2 -
Cisco Unified Computing System En120s M2 -
Cisco Unified Computing System E140d -
Cisco Unified Computing System E140dp -
Cisco Unified Computing System E160d -
Cisco Unified Computing System E160dp -
NA
CVE-2010-0574
Unspecified vulnerability in Cisco Wireless LAN Controller (WLC) software 3.2 prior to 3.2.215.0; 4.1 and 4.2 prior to 4.2.205.0; 4.1M and 4.2M prior to 4.2.207.54M; 5.0, 5.1, and 6.0 prior to 6.0.188.0; and 5.2 prior to 5.2.193.11 allows remote malicious users to cause a denial ...
Cisco Wireless Lan Controller Software 4.1
Cisco Wireless Lan Controller Software 4.1m
Cisco Wireless Lan Controller Software 4.2
Cisco Wireless Lan Controller Software 4.2m
Cisco Wireless Lan Controller Software 4.0.179.8
Cisco Wireless Lan Controller Software 4.0.196
Cisco Wireless Lan Controller Software 4.0.206.0
Cisco Wireless Lan Controller Software 4.0.217.0
Cisco Wireless Lan Controller Software 5.0.148.0
Cisco Wireless Lan Controller Software 5.0.148.2
Cisco Wireless Lan Controller Software 5.1.151.0
Cisco Wireless Lan Controller Software 5.1.152.0
Cisco Wireless Lan Controller Software 3.2
Cisco Wireless Lan Controller Software 3.2.150.10
Cisco Wireless Lan Controller Software 6.0
Cisco Wireless Lan Controller Software 3.2.171.5
Cisco Wireless Lan Controller Software 4.0.155.0
Cisco Wireless Lan Controller Software 4.0.179.11
Cisco Wireless Lan Controller Software 4.0.219.0
Cisco Wireless Lan Controller Software 4.1.181.0
Cisco Wireless Lan Controller Software 4.2.176.0
Cisco Wireless Lan Controller Software 4.2.61.0
NA
CVE-2015-6259
The JavaServer Pages (JSP) component in Cisco Integrated Management Controller (IMC) Supervisor prior to 1.0.0.1 and UCS Director (formerly Cloupia Unified Infrastructure Controller) prior to 5.2.0.1 allows remote malicious users to write to arbitrary files via crafted HTTP reque...
Cisco Integrated Management Controller Supervisor
Cisco Unified Computing System Director 4.0 Base
Cisco Unified Computing System Director 5.0.0.0
Cisco Unified Computing System Director
Cisco Unified Computing System Director 5.0.0.1
Cisco Unified Computing System Director 5.0.0.2
Cisco Unified Computing System Director 5.0.0.3
Cisco Unified Computing System Director 5.1.0.1
Cisco Unified Computing System Director 3.4 Base
Cisco Unified Computing System Director 4.1 Base
Cisco Unified Computing System Director 5.1.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-3400
deserialization
CVE-2024-21788
CVE-2023-42433
CVE-2024-21841
CVE-2024-22095
local file inclusion
memory leak
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »