Cisco

Unified Computing System

40 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
6.8

CVE-2012-4106

  • EPSS 0.11%
  • Published 13.10.2013 10:20:02
  • Last modified 11.04.2025 00:51:21

The fabric-interconnect component in Cisco Unified Computing System (UCS) uses the same privilege level for execution of every script, which allows local users to gain privileges and execute arbitrary commands via an unspecified script-execution appr...

4.6

CVE-2012-4107

  • EPSS 0.07%
  • Published 13.10.2013 10:20:02
  • Last modified 11.04.2025 00:51:21

The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary commands via crafted parameters to a file-related command, aka Bug ID CSCtq86489.

4.6

CVE-2012-4105

  • EPSS 0.13%
  • Published 13.10.2013 10:19:59
  • Last modified 11.04.2025 00:51:21

The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (component crash) via crafted "debug hardware" parameters, aka Bug ID CSCtq86468.

6.8

CVE-2012-4084

  • EPSS 0.15%
  • Published 05.10.2013 10:55:03
  • Last modified 11.04.2025 00:51:21

Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCt...

6.8

CVE-2012-4136

  • EPSS 0.43%
  • Published 03.10.2013 11:03:38
  • Last modified 11.04.2025 00:51:21

The high-availability service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) does not properly bind the cluster service to the management interface, which allows remote attackers to obtain sensitive information or cause ...

6.8

CVE-2012-4103

  • EPSS 0.08%
  • Published 02.10.2013 22:55:23
  • Last modified 11.04.2025 00:51:21

ethanalyzer in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq02686.

6.8

CVE-2012-4111

  • EPSS 0.08%
  • Published 02.10.2013 22:55:23
  • Last modified 11.04.2025 00:51:21

The create certreq command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86563.

6.8

CVE-2012-4110

  • EPSS 0.08%
  • Published 02.10.2013 22:55:23
  • Last modified 11.04.2025 00:51:21

run-script in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86560.

6.8

CVE-2012-4109

  • EPSS 0.08%
  • Published 02.10.2013 22:55:23
  • Last modified 11.04.2025 00:51:21

The clear sshkey command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86559.

6.6

CVE-2012-4104

  • EPSS 0.06%
  • Published 02.10.2013 22:55:23
  • Last modified 11.04.2025 00:51:21

Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug...