A vulnerability in the web UI of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote malicious user to inject arbitrary code and execute arbitrary commands at the underlying operating system level. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sending crafted commands to the web-based management interface of the affected software. A successful exploit could allow the malicious user to inject and execute arbitrary commands at the underlying operating system level.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cisco integrated management controller |