Cisco » Unified Computing System Integrated Management Controller : Security Vulnerabilities, CVEs, CVSS score >= 6

CVE-2013-1186

Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before 2.0(2m) allows remote attackers to bypass KVM authentication via a crafted authentication request to a Cisco Integrated Management Controller (IMC), aka Bug ID CSCts53746.
Max CVSS
7.5
EPSS Score
0.22%
Published
2013-04-25
Updated
2013-05-02

CVE-2013-1185

The web interface in the Manager component in Cisco Unified Computing System (UCS) 1.x and 2.x before 2.0(2m) allows remote attackers to obtain sensitive information by reading a (1) technical-support bundle file or (2) on-device configuration backup, aka Bug ID CSCtq86543.
Max CVSS
9.3
EPSS Score
0.23%
Published
2013-04-25
Updated
2013-04-25

CVE-2013-1184

The management API in the XML API management service in the Manager component in Cisco Unified Computing System (UCS) 1.x before 1.2(1b) allows remote attackers to cause a denial of service (service outage) via a malformed request, aka Bug ID CSCtg48206.
Max CVSS
7.8
EPSS Score
0.13%
Published
2013-04-25
Updated
2013-04-25

CVE-2013-1182

The login page in the Web Console in the Manager component in Cisco Unified Computing System (UCS) before 1.0(2h), 1.1 before 1.1(1j), and 1.3(x) allows remote attackers to bypass LDAP authentication via a malformed request, aka Bug ID CSCtc91207.
Max CVSS
9.3
EPSS Score
0.21%
Published
2013-04-25
Updated
2013-04-25
4 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close