Filtered by vendor Cisco
Subscriptions
Filtered by product Unified Computing System
Subscriptions
Total
110 CVE
CVE | Vendors | Products | Updated | CVSS v3.1 |
---|---|---|---|---|
CVE-2012-4107 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary commands via crafted parameters to a file-related command, aka Bug ID CSCtq86489. | ||||
CVE-2012-4106 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The fabric-interconnect component in Cisco Unified Computing System (UCS) uses the same privilege level for execution of every script, which allows local users to gain privileges and execute arbitrary commands via an unspecified script-execution approach, aka Bug ID CSCtq86477. | ||||
CVE-2012-4105 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (component crash) via crafted "debug hardware" parameters, aka Bug ID CSCtq86468. | ||||
CVE-2012-4104 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706. | ||||
CVE-2012-4103 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
ethanalyzer in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq02686. | ||||
CVE-2012-4102 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The activate firmware command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq02600. | ||||
CVE-2012-4096 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The local file editor in the Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) allows local users to gain privileges and modify arbitrary fabric-interconnect files, in the context of a vi process, via unspecified commands, aka Bug ID CSCtn06574. | ||||
CVE-2012-4095 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The local file editor in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges, and read or modify arbitrary files, via unspecified key bindings, aka Bug ID CSCtn04521. | ||||
CVE-2012-4094 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
Buffer overflow in the Smart Call Home feature in the fabric interconnect in Cisco Unified Computing System (UCS) allows remote attackers to cause a denial of service by reading and forging control messages associated with Smart Call Home reports, aka Bug ID CSCtl00198. | ||||
CVE-2012-4093 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via an invalid Smart Call Home contact address, aka Bug ID CSCtl00186. | ||||
CVE-2012-4092 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attackers to read or modify an inter-device data stream by spoofing an identity, aka Bug ID CSCtk00683. | ||||
CVE-2012-4089 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
MCTOOLS in the fabric interconnect in Cisco Unified Computing System (UCS) allows local users to execute arbitrary Baseboard Management Controller (BMC) commands by leveraging (1) local, (2) shell-level, or (3) debug-level privileges at the operating-system layer, aka Bug ID CSCtg76239. | ||||
CVE-2012-4088 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an unspecified user account, which makes it easier for remote attackers to read or modify files by leveraging knowledge of this password, aka Bug ID CSCtg20769. | ||||
CVE-2012-4087 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
A cluster setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20793. | ||||
CVE-2012-4086 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20790. | ||||
CVE-2012-4085 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
The Intelligent Platform Management Interface (IPMI) implementation in the Blade Management Controller in Cisco Unified Computing System (UCS) allows remote attackers to enumerate valid usernames by observing IPMI interface responses, aka Bug ID CSCtg20761. | ||||
CVE-2012-4084 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCtg20755. | ||||
CVE-2012-4083 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
Multiple buffer overflows in the administrative web interface in Cisco Unified Computing System (UCS) allow remote authenticated users to cause a denial of service (memory corruption and session termination) via long string values for unspecified parameters, aka Bug ID CSCtg20751. | ||||
CVE-2012-4082 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
MCTools in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to gain privileges by entering crafted command-line parameters on a Fabric Interconnect device, aka Bug ID CSCtg20749. | ||||
CVE-2012-4081 | 1 Cisco | 1 Unified Computing System | 2024-11-21 | N/A |
MCServer in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (application crash) via invalid MCTools parameters, aka Bug ID CSCtg20734. |