Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unified computing system integrated management controller vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6399
The Supervisor 1.0.0.0 and 1.0.0.1 in Cisco Integrated Management Controller (IMC) prior to 2.0(9) allows remote authenticated users to cause a denial of service (IP interface outage) via crafted parameters in an HTTP request, aka Bug ID CSCuv38286.
Cisco Integrated Management Controller Supervisor 1.0.0.0
Cisco Integrated Management Controller Supervisor 1.0.0.1
NA
CVE-2015-6259
The JavaServer Pages (JSP) component in Cisco Integrated Management Controller (IMC) Supervisor prior to 1.0.0.1 and UCS Director (formerly Cloupia Unified Infrastructure Controller) prior to 5.2.0.1 allows remote malicious users to write to arbitrary files via crafted HTTP reque...
Cisco Integrated Management Controller Supervisor
Cisco Unified Computing System Director 4.0 Base
Cisco Unified Computing System Director 5.0.0.0
Cisco Unified Computing System Director
Cisco Unified Computing System Director 5.0.0.1
Cisco Unified Computing System Director 5.0.0.2
Cisco Unified Computing System Director 5.0.0.3
Cisco Unified Computing System Director 5.1.0.1
Cisco Unified Computing System Director 3.4 Base
Cisco Unified Computing System Director 4.1 Base
Cisco Unified Computing System Director 5.1.0.0
NA
CVE-2014-7996
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco Integrated Management Controller in Cisco Unified Computing System allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCuq45477.
Cisco Unified Computing System -
NA
CVE-2014-8003
Cisco Integrated Management Controller in Cisco Unified Computing System 2.2(2c)A and previous versions allows local users to obtain shell access via a crafted map-nfs command, aka Bug ID CSCup05998.
Cisco Unified Computing System
6.5
CVSSv3
CVE-2018-15404
A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Supervisor and Cisco UCS Director could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient ...
Cisco Unified Computing System Director 6.6\\(0.0\\)
Cisco Integrated Management Controller Supervisor 2.1\\(0.0\\)
NA
CVE-2015-0599
The web interface in Cisco Integrated Management Controller in Cisco Unified Computing System (UCS) on C-Series Rack Servers does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other a...
Cisco Unified Computing System -
1 Github repository
6.1
CVSSv3
CVE-2017-6604
A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote malicious user to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unif...
Cisco Unified Computing System 3.0\\(1c\\)
Cisco Unified Computing System 2.2\\(8b\\)
Cisco Unified Computing System 3.1\\(2c\\)b
8.8
CVSSv3
CVE-2018-0431
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insu...
Cisco Unified Computing System 3.0\\(3a\\)
Cisco Unified Computing System 3.1\\(3\\)
Cisco Unified Computing System 2.0 Base
8.8
CVSSv3
CVE-2018-0430
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote malicious user to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to insu...
Cisco Unified Computing System 3.1\\(3\\)
Cisco Unified Computing System 3.0\\(3a\\)
Cisco Unified Computing System 2.0 Base
NA
CVE-2013-1190
The C-Series Rack Server component 1.4 in Cisco Unified Computing System (UCS) does not properly restrict inbound access to ports, which allows remote malicious users to cause a denial of service (Integrated Management Controller reboot or hang) via crafted packets, as demonstrat...
Cisco Unified Computing System -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4367
CVE-2024-35977
CVE-2023-49335
man-in-the-middle
CVE-2024-4947
CVE-2024-31714
memory leak
SQL
CVE-2024-35994
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »