Cisco

Unified Computing System

43 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2020-26063

  • EPSS 0.08%
  • Published 18.11.2024 16:15:05
  • Last modified 18.11.2024 17:11:17

A vulnerability in the API endpoints of Cisco Integrated Management Controller could allow an authenticated, remote attacker to bypass authorization and take actions on a vulnerable system without authorization. The vulnerability is due to impr...

5.3

CVE-2020-26062

  • EPSS 0.16%
  • Published 18.11.2024 16:15:05
  • Last modified 06.08.2025 13:39:23

A vulnerability in Cisco Integrated Management Controller could allow an unauthenticated, remote attacker to enumerate valid usernames within the vulnerable application. The vulnerability is due to differences in authentication responses sent b...

7.2

CVE-2024-20365

  • EPSS 0.3%
  • Published 02.10.2024 17:15:14
  • Last modified 08.10.2024 14:28:42

A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS X-Series Servers could allow an authenticated, remote attacker with administrative privileges to perform command injection attacks on an affected syst...

8.7

CVE-2024-20356

  • EPSS 31.22%
  • Published 24.04.2024 20:15:07
  • Last modified 21.11.2024 08:52:26

A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker with Administrator-level privileges to perform command injection attacks on an affected system and ele...

8.8

CVE-2024-20295

  • EPSS 0.38%
  • Published 24.04.2024 20:15:07
  • Last modified 21.11.2024 08:52:14

A vulnerability in the CLI of the Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to perform command injection attacks on the underlying operating system and elevate privileges to root. To exploit this vulner...

7.5

CVE-2021-34736

  • EPSS 0.16%
  • Published 21.10.2021 03:15:06
  • Last modified 21.11.2024 06:11:04

A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to cause the web-based management interface to unexpectedly restart. The vulnerability is d...

4.3

CVE-2021-1592

  • EPSS 0.42%
  • Published 25.08.2021 20:15:12
  • Last modified 21.11.2024 05:44:41

A vulnerability in the way Cisco UCS Manager software handles SSH sessions could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper resource management for...

8.6

CVE-2021-1387

  • EPSS 0.94%
  • Published 24.02.2021 20:15:13
  • Last modified 21.11.2024 05:44:14

A vulnerability in the network stack of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability exists because the software improperly releases resour...

8.8

CVE-2021-1368

  • EPSS 0.27%
  • Published 24.02.2021 20:15:13
  • Last modified 21.11.2024 05:44:11

A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to execute arbitrary code with administrative privileges or cause a denial of servic...

6.9

CVE-2019-1736

  • EPSS 0.03%
  • Published 23.09.2020 01:15:14
  • Last modified 21.11.2024 04:37:12

A vulnerability in the firmware of the Cisco UCS C-Series Rack Servers could allow an authenticated, physical attacker to bypass Unified Extensible Firmware Interface (UEFI) Secure Boot validation checks and load a compromised software image on an af...