Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-UCSD-MULT-VULNS-UNFPDW4E
HistoryApr 15, 2020 - 4:00 p.m.

Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data

2020-04-1516:00:00
tools.cisco.com
5

0.968 High

EPSS

Percentile

99.7%

JSON

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device.

For more information about these vulnerabilities, see the Details [“#details”] section of this advisory.

Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsd-mult-vulns-UNfpdW4E [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsd-mult-vulns-UNfpdW4E”]

Related

nessus 1
threatpost 1
zdt 1
packetstorm 1
checkpoint_advisories 7
prion 9
cve 9
zdi 7
dsquare 1
srcincite 2
nessus
nessus
Cisco UCS Director and Cisco UCS Director Express for Big Data Multiple Vuulnerabilities (cisco-sa-ucsd-mult-vulns-UNfpdW4E)
2020-04-21 00:00:00
threatpost
threatpost
Cisco IP Phone Harbors Critical RCE Flaw
2020-04-16 18:49:27
zdt
zdt
Cisco UCS Director Cloupia Script Remote Code Execution Exploit
2020-06-08 00:00:00
packetstorm
packetstorm
Cisco UCS Director Cloupia Script Remote Code Execution
2020-06-05 00:00:00
checkpoint_advisories
checkpoint_advisories
Cisco UCS Director saveWindowsNetworkConfig Directory Traversal (CVE-2020-3249)
2020-09-01 00:00:00
Cisco UCS Director Directory Traversal (CVE-2020-3250)
2020-05-10 00:00:00
Cisco UCS Director saveStaticConfig Directory Traversal (CVE-2020-3248)
2020-09-01 00:00:00
prion
prion
Directory traversal
2020-04-15 21:15:00
Directory traversal
2020-04-15 21:15:00
Directory traversal
2020-04-15 21:15:00
cve
cve
CVE-2020-3240
2020-04-15 21:15:00
CVE-2020-3250
2020-04-15 21:15:00
CVE-2020-3249
2020-04-15 21:15:00
zdi
zdi
Cisco UCS Director ScriptModuleAddJarPage Directory Traversal Remote Code Execution Vulnerability
2020-04-16 00:00:00
Cisco UCS Director downloadFile Directory Traversal Information Disclosure Vulnerability
2020-04-16 00:00:00
Cisco UCS Director saveWindowsNetworkConfig Directory Traversal Denial-of-Service Vulnerability
2020-04-16 00:00:00
dsquare
dsquare
Cisco UCS Director Directory Traversal
2021-03-08 00:00:00
srcincite
srcincite
SRC-2020-0012 : Cisco UCS Director CIMCDownloadDiagnosticsReport doFormSubmit Directory Traversal Information Disclosure Vulnerability
2020-01-08 00:00:00
SRC-2020-0013 : Cisco UCS Director MyCallable call Directory Traversal Remote Code Execution Vulnerability
2020-01-08 00:00:00

0.968 High

EPSS

Percentile

99.7%

JSON
Related for CISCO-SA-UCSD-MULT-VULNS-UNFPDW4E
nessus1threatpost1zdt1packetstorm1checkpoint_advisories7prion9cve9zdi7dsquare1srcincite2