CVE-2012-4112 : The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS

The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary commands via crafted command parameters within the command-line interface, aka Bug ID CSCtr43330.

Published 2013-10-19 10:36:07

Updated 2025-04-11 00:51:22

Source Cisco Systems, Inc.

View at NVD, CVE.org

Products affected by CVE-2012-4112

Cisco » Unified Computing System » Version: N/A
cpe:2.3:h:cisco:unified_computing_system:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2012-4112

EPSS FAQ

0.08%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 22 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2012-4112

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
6.8	MEDIUM	AV:L/AC:L/Au:S/C:C/I:C/A:C	3.1	10.0	NIST
Access Vector: Local Access Complexity: Low Authentication: Single Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

CWE ids for CVE-2012-4112

CWE-264

Assigned by: nvd@nist.gov (Primary)

References for CVE-2012-4112

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4112

Cisco Unified Computing System Baseboard Management Controller Command Injection Vulnerability
Vendor Advisory

Jump to

Vulnerability Details : CVE-2012-4112

Products affected by CVE-2012-4112

Exploit prediction scoring system (EPSS) score for CVE-2012-4112

CVSS scores for CVE-2012-4112

CWE ids for CVE-2012-4112

References for CVE-2012-4112