Published: 25/09/2013 Updated: 29/08/2017

CVSS v2 Base Score: 5.1 | Impact Score: 6.4 | Exploitability Score: 4.9

VMScore: 454

Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P

A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote malicious users to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20790.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco unified computing system -

A vulnerability in the initial setup script of Cisco Unified Computing System fabric interconnect devices could allow an unauthenticated, remote attacker to execute arbitrary commands on the underlying operating system The vulnerability is due to unfiltered input in the initial configuration script An attacker could exploit this vulnerability by ...

CWE-77 http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4086 http://www.securitytracker.com/id/1029083 https://exchange.xforce.ibmcloud.com/vulnerabilities/87368 https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/Cisco-SA-20130924-CVE-2012-4086

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2012-4086

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect