The KVM subsystem in the client in Cisco Unified Computing System (UCS) does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof servers, and read or modify KVM data, via a crafted certificate, aka Bug ID CSCte90332.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2013-09-20T16:00:00
Updated: 2024-08-06T20:28:06.916Z
Reserved: 2012-07-31T00:00:00
Link: CVE-2012-4073
Vulnrichment
No data.
NVD
Status : Modified
Published: 2013-09-20T16:55:07.690
Modified: 2024-11-21T01:42:10.153
Link: CVE-2012-4073
Redhat
No data.