Lucene search

[email protected]CVE-2012-4085

HistorySep 24, 2013 - 10:35 a.m.

CVE-2012-4085

2013-09-2410:35:51

CWE-20

[email protected]

web.nvd.nist.gov

cisco

ucs

ipmi

enumeration

bug id

security vulnerability

cve-2012-4085

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

0.002

Percentile

53.0%

JSON

The Intelligent Platform Management Interface (IPMI) implementation in the Blade Management Controller in Cisco Unified Computing System (UCS) allows remote attackers to enumerate valid usernames by observing IPMI interface responses, aka Bug ID CSCtg20761.

Affected configurations

NVD

Node

ciscounified_computing_systemMatch-

CPENameOperatorVersion
cisco:unified_computing_systemcisco unified computing systemeq-

CPE	Name	Operator	Version
cisco:unified_computing_system	cisco unified computing system	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4085

www.securitytracker.com/id/1029081

exchange.xforce.ibmcloud.com/vulnerabilities/87372

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

6.8

Confidence

Low

EPSS

0.002

Percentile

53.0%

JSON

Related for CVE-2012-4085

cisco1 nvd1 prion1 cvelist1