Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ucs manager vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2017-12243
A vulnerability in the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authenticated, local malicious user to obtain root shell privileges on the device, aka Comm...
Cisco Unified Computing System Manager Firmware -
Cisco Firepower 9300 Security Appliance Firmware -
Cisco Firepower 4100 Next-generation Firewall Firmware -
1 EDB exploit
4.3
CVSSv3
CVE-2019-6688
On BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5 and BIG-IQ versions 6.0.0-6.1.0 and 5.2.0-5.4.0, a user is able to obtain the secret that was being used to encrypt a BIG-IP UCS backup file while sending SNMP qu...
F5 Big-iq Centralized Management
F5 Big-ip Access Policy Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Application Acceleration Manager
F5 Big-ip Application Security Manager
F5 Big-ip Domain Name System
F5 Big-ip Edge Gateway
F5 Big-ip Fraud Protection Service
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Local Traffic Manager
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Webaccelerator
5.5
CVSSv3
CVE-2019-6632
On BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, under certain circumstances, attackers can decrypt configuration items that are encrypted because the vCMP configuration unit key is generated with insufficient randomness. The attack prerequisite is ...
F5 Big-ip Local Traffic Manager
F5 Big-ip Application Acceleration Manager
F5 Big-ip Advanced Firewall Manager
F5 Big-ip Analytics
F5 Big-ip Access Policy Manager
F5 Big-ip Application Security Manager
F5 Big-ip Domain Name System
F5 Big-ip Edge Gateway
F5 Big-ip Global Traffic Manager
F5 Big-ip Link Controller
F5 Big-ip Policy Enforcement Manager
F5 Big-ip Webaccelerator
F5 Big-ip Fraud Protection Service
3.5
CVSSv3
CVE-2021-1354
A vulnerability in the certificate registration process of Cisco Unified Computing System (UCS) Central Software could allow an authenticated, adjacent malicious user to register a rogue Cisco Unified Computing System Manager (UCSM). This vulnerability is due to improper certific...
Cisco Unified Computing System Central Software
9.8
CVSSv3
CVE-2018-15427
A vulnerability in Cisco Video Surveillance Manager (VSM) Software running on certain Cisco Connected Safety and Security Unified Computing System (UCS) platforms could allow an unauthenticated, remote malicious user to log in to an affected system by using the root account, whic...
Cisco Video Surveillance Manager 7.11
Cisco Video Surveillance Manager 7.11.1
Cisco Video Surveillance Manager 7.10
6.5
CVSSv3
CVE-2018-0331
A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running, or based on, Cisco NX-OS Software contain a vulnerability that could allow an unauthenticated, adjacent malicious user to create a denial of service (DoS) condition. The vulnerab...
Cisco Nx-os
Cisco Nx-os 6.0
Cisco Nx-os 7.0
Cisco Nx-os 7.2
Cisco Nx-os 8.0
Cisco Firepower Extensible Operating System
Cisco Fxos
9.8
CVSSv3
CVE-2015-6435
An unspecified CGI script in Cisco FX-OS prior to 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager prior to 2.2(4b), 2.2(5) prior to 2.2(5a), and 3.0 prior to 3.0(2e) allows remote malicious users to execute arbitrary shell commands via a crafted H...
Cisco Firepower Extensible Operating System 1.1.1
Cisco Firepower Extensible Operating System 1.1\\(1.160\\)
Cisco Firepower Extensible Operating System 1.1\\(1.86\\)
Cisco Unified Computing System 3.0\\(1e\\)
Cisco Unified Computing System 3.0\\(1d\\)
Cisco Unified Computing System 2.2\\(3e\\)
Cisco Unified Computing System 2.2\\(3d\\)
Cisco Unified Computing System 2.2\\(1f\\)
Cisco Unified Computing System 2.2\\(1e\\)
Cisco Unified Computing System 2.1\\(1f\\)
Cisco Unified Computing System 2.1\\(1e\\)
Cisco Unified Computing System 1.3\\(1q\\)
Cisco Unified Computing System 1.3\\(1p\\)
Cisco Unified Computing System 1.4\\(4i\\)
Cisco Unified Computing System 1.4\\(4g\\)
Cisco Unified Computing System 1.4\\(4f\\)
Cisco Unified Computing System 2.0\\(4d\\)
Cisco Unified Computing System 2.0\\(4b\\)
Cisco Unified Computing System 2.0\\(2m\\)
Cisco Unified Computing System 2.0\\(1x\\)
Cisco Unified Computing System 1.2 Base
Cisco Unified Computing System 1.1 Base
10
CVSSv3
CVE-2021-44228
Apache Log4j2 2.0-beta9 up to and including 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An attacker who can contr...
Apache Log4j 2.0
Apache Log4j
Siemens Sppa-t3000 Ses3000 Firmware
Siemens Logo\\! Soft Comfort
Siemens Spectrum Power 4 4.70
Siemens Spectrum Power 4
Siemens Siveillance Control Pro
Siemens Energyip Prepay 3.7
Siemens Energyip Prepay 3.8
Siemens Siveillance Identity 1.6
Siemens Siveillance Identity 1.5
Siemens Siveillance Command
Siemens Sipass Integrated 2.85
Siemens Sipass Integrated 2.80
Siemens Head-end System Universal Device Integration System
Siemens Gma-manager
Siemens Energyip 8.5
Siemens Energyip 8.6
Siemens Energyip 8.7
Siemens Energyip 9.0
Siemens Energy Engage 3.1
Siemens E-car Operation Center
2 Metasploit modules
1162 Github repositories
28 Articles
5.3
CVSSv3
CVE-2021-1590
A vulnerability in the implementation of the system login block-for command for Cisco NX-OS Software could allow an unauthenticated, remote malicious user to cause a login process to unexpectedly restart, causing a denial of service (DoS) condition. This vulnerability is due to a...
Cisco Nx-os 7.0\\(3\\)i4\\(0.116\\)
Cisco Nx-os 7.3\\(7\\)n1\\(1b\\)
Cisco Unified Computing System
7.8
CVSSv3
CVE-2016-6402
UCS Manager and UCS 6200 Fabric Interconnects in Cisco Unified Computing System (UCS) up to and including 3.0(2d) allow local users to obtain OS root access via crafted CLI input, aka Bug ID CSCuz91263.
Cisco Unified Computing System 2.2\\(1g\\)
Cisco Unified Computing System 2.2\\(1h\\)
Cisco Unified Computing System 2.2\\(3d\\)
Cisco Unified Computing System 2.2\\(3e\\)
Cisco Unified Computing System 3.0\\(1d\\)
Cisco Unified Computing System 3.0\\(1e\\)
Cisco Unified Computing System 2.2\\(1b\\)
Cisco Unified Computing System 2.2\\(1c\\)
Cisco Unified Computing System 2.2\\(1d\\)
Cisco Unified Computing System 2.2\\(2e\\)
Cisco Unified Computing System 2.2\\(3a\\)
Cisco Unified Computing System 2.2\\(4b\\)
Cisco Unified Computing System 2.2\\(4c\\)
Cisco Unified Computing System 2.2 Base
Cisco Unified Computing System 2.2\\(2c\\)a
Cisco Unified Computing System 2.2\\(2c\\)
Cisco Unified Computing System 2.2\\(2d\\)
Cisco Unified Computing System 2.2\\(3f\\)
Cisco Unified Computing System 2.2\\(3g\\)
Cisco Unified Computing System 3.0\\(2c\\)
Cisco Unified Computing System 3.0\\(2d\\)
Cisco Unified Computing System 2.2\\(5b\\)a
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »