Cisco

Ucs Director

26 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.8

CVE-2022-20765

  • EPSS 0.16%
  • Published 27.05.2022 14:15:08
  • Last modified 21.11.2024 06:43:30

A vulnerability in the web applications of Cisco UCS Director could allow an authenticated, remote attacker to conduct a cross-site scripting attack on an affected system. This vulnerability is due to unsanitized user input. An attacker could exploit...

10

CVE-2021-44228

Warning Exploit
  • EPSS 94.36%
  • Published 10.12.2021 10:15:09
  • Last modified 08.08.2025 18:52:00

Apache Log4j2 2.0-beta9 through 2.15.0 (excluding security releases 2.12.2, 2.12.3, and 2.3.1) JNDI features used in configuration, log messages, and parameters do not protect against attacker controlled LDAP and other JNDI related endpoints. An atta...

4.8

CVE-2020-3464

  • EPSS 0.17%
  • Published 17.08.2020 18:15:13
  • Last modified 21.11.2024 05:31:07

A vulnerability in the web-based management interface of Cisco UCS Director could allow an authenticated, remote attacker with administrative credentials to conduct a cross-site scripting (XSS) attack against a user of the interface. The vulnerabilit...

4.9

CVE-2020-3242

  • EPSS 0.26%
  • Published 18.06.2020 03:15:11
  • Last modified 21.11.2024 05:30:38

A vulnerability in the REST API of Cisco UCS Director could allow an authenticated, remote attacker with administrative privileges to obtain confidential information from an affected device. The vulnerability exists because confidential information i...

8.5

CVE-2020-3241

  • EPSS 0.5%
  • Published 18.06.2020 03:15:11
  • Last modified 21.11.2024 05:30:38

A vulnerability in the orchestration tasks of Cisco UCS Director could allow an authenticated, remote attacker to perform a path traversal attack on an affected device. The vulnerability is due to insufficient validation of user-supplied input on the...

4.3

CVE-2020-3329

  • EPSS 0.14%
  • Published 06.05.2020 17:15:13
  • Last modified 21.11.2024 05:30:48

A vulnerability in role-based access control of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts o...

9.8

CVE-2020-3243

  • EPSS 82.36%
  • Published 15.04.2020 21:15:35
  • Last modified 21.11.2024 05:30:38

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about t...

6.5

CVE-2020-3252

  • EPSS 7.01%
  • Published 15.04.2020 21:15:35
  • Last modified 21.11.2024 05:30:39

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about t...

9

CVE-2020-3251

  • EPSS 31.18%
  • Published 15.04.2020 21:15:35
  • Last modified 21.11.2024 05:30:39

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about t...

9.8

CVE-2020-3250

  • EPSS 90.95%
  • Published 15.04.2020 21:15:35
  • Last modified 21.11.2024 05:30:39

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about t...