|
301231
|
- |
|
cisco
|
unified_computing_system
|
The local file editor in the Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) allows local users to gain privileges and modify arbitrary fabric-interconnect files, in the…
|
CWE-20
Improper Input Validation
|
CVE-2012-4096
|
2024-11-21 10:42 |
2013-10-1 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301232
|
- |
|
cisco
|
unified_computing_system
|
The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an unspecified user account, which makes it easier for remote attackers to read or modify files by leveraging knowl…
|
CWE-255
Credentials Management
|
CVE-2012-4088
|
2024-11-21 10:42 |
2013-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301233
|
- |
|
cisco
|
unified_computing_system
|
The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attacker…
|
CWE-20
Improper Input Validation
|
CVE-2012-4092
|
2024-11-21 10:42 |
2013-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301234
|
- |
|
cisco
|
unified_computing_system
|
The XML API service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) allows remote attackers to cause a denial of service (API service outage) via a malformed XML document…
|
CWE-20
Improper Input Validation
|
CVE-2012-4079
|
2024-11-21 10:42 |
2013-09-26 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301235
|
- |
|
cisco
|
unified_computing_system
|
A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20790.
|
CWE-77
Command Injection
|
CVE-2012-4086
|
2024-11-21 10:42 |
2013-09-25 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301236
|
- |
|
cisco
|
unified_computing_system
|
Buffer overflow in the Smart Call Home feature in the fabric interconnect in Cisco Unified Computing System (UCS) allows remote attackers to cause a denial of service by reading and forging control m…
|
CWE-119
Incorrect Access of Indexable Resource ('Range Error')
|
CVE-2012-4094
|
2024-11-21 10:42 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301237
|
- |
|
cisco
|
unified_computing_system
|
MCTOOLS in the fabric interconnect in Cisco Unified Computing System (UCS) allows local users to execute arbitrary Baseboard Management Controller (BMC) commands by leveraging (1) local, (2) shell-le…
|
CWE-20
Improper Input Validation
|
CVE-2012-4089
|
2024-11-21 10:42 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301238
|
- |
|
cisco
|
unified_computing_system
|
A cluster setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20793.
|
CWE-20
Improper Input Validation
|
CVE-2012-4087
|
2024-11-21 10:42 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301239
|
- |
|
cisco
|
unified_computing_system
|
The Intelligent Platform Management Interface (IPMI) implementation in the Blade Management Controller in Cisco Unified Computing System (UCS) allows remote attackers to enumerate valid usernames by …
|
CWE-20
Improper Input Validation
|
CVE-2012-4085
|
2024-11-21 10:42 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
301240
|
- |
|
cisco
|
unified_computing_system
|
The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authe…
|
CWE-287
Improper Authentication
|
CVE-2012-4078
|
2024-11-21 10:42 |
2013-09-24 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
