Skip to main content

Unified Computing System Integrated Management Controller

4 CVEs product

Monthly

CVE-2013-1186 HIGH This Week

Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before 2.0(2m) allows remote attackers to bypass KVM authentication via a crafted authentication request to a Cisco Integrated. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Unified Computing System Infrastructure And Unified Computing System Software Unified Computing System 6120Xp Fabric Interconnect Unified Computing System 6140Xp Fabric Interconnect +3
NVD
CVSS 2.0
7.5
EPSS
0.2%
CVE-2013-1185 CRITICAL Act Now

The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x before 2.0(2m) allows remote attackers to obtain sensitive information by reading a (1). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Cisco Unified Computing System Infrastructure And Unified Computing System Software Unified Computing System 6120Xp Fabric Interconnect Unified Computing System 6140Xp Fabric Interconnect +3
NVD
CVSS 2.0
9.3
EPSS
0.6%
CVE-2013-1184 HIGH This Week

The management API in the XML API management service in the Manager component in Cisco Unified Computing System (UCS) 1.x before 1.2(1b) allows remote attackers to cause a denial of service (service. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Computing System Infrastructure And Unified Computing System Software Unified Computing System 6120Xp Fabric Interconnect Unified Computing System 6140Xp Fabric Interconnect +3
NVD
CVSS 2.0
7.8
EPSS
0.8%
CVE-2013-1182 CRITICAL Act Now

The login page in the Web Console in the Manager component in Cisco Unified Computing System (UCS) before 1.0(2h), 1.1 before 1.1(1j), and 1.3(x) allows remote attackers to bypass LDAP authentication. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Cisco Unified Computing System Infrastructure And Unified Computing System Software Unified Computing System 6120Xp Fabric Interconnect Unified Computing System 6140Xp Fabric Interconnect +3
NVD
CVSS 2.0
9.3
EPSS
0.4%
EPSS 0% CVSS 7.5
HIGH This Week

Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before 2.0(2m) allows remote attackers to bypass KVM authentication via a crafted authentication request to a Cisco Integrated. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Cisco Authentication Bypass Unified Computing System Infrastructure And Unified Computing System Software +5
NVD
EPSS 1% CVSS 9.3
CRITICAL Act Now

The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x before 2.0(2m) allows remote attackers to obtain sensitive information by reading a (1). Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Information Disclosure Cisco Unified Computing System Infrastructure And Unified Computing System Software +5
NVD
EPSS 1% CVSS 7.8
HIGH This Week

The management API in the XML API management service in the Manager component in Cisco Unified Computing System (UCS) 1.x before 1.2(1b) allows remote attackers to cause a denial of service (service. Rated high severity (CVSS 7.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Denial Of Service Cisco Unified Computing System Infrastructure And Unified Computing System Software +5
NVD
EPSS 0% CVSS 9.3
CRITICAL Act Now

The login page in the Web Console in the Manager component in Cisco Unified Computing System (UCS) before 1.0(2h), 1.1 before 1.1(1j), and 1.3(x) allows remote attackers to bypass LDAP authentication. Rated critical severity (CVSS 9.3), this vulnerability is remotely exploitable. No vendor patch available.

Privilege Escalation Cisco Unified Computing System Infrastructure And Unified Computing System Software +5
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy