Lucene search

[email protected]CVE-2012-4086

HistorySep 25, 2013 - 10:31 a.m.

CVE-2012-4086

2013-09-2510:31:26

CWE-77

[email protected]

web.nvd.nist.gov

cisco

ucs

fabric interconnect

setup script

remote attackers

arbitrary commands

vulnerability

cve-2012-4086

nvd

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.1%

JSON

A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20790.

Affected configurations

NVD

Node

ciscounified_computing_systemMatch-

CPENameOperatorVersion
cisco:unified_computing_systemcisco unified computing systemeq-

CPE	Name	Operator	Version
cisco:unified_computing_system	cisco unified computing system	eq	-

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4086

www.securitytracker.com/id/1029083

exchange.xforce.ibmcloud.com/vulnerabilities/87368

5.1 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

8 High

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.1%

JSON

Related for CVE-2012-4086

prion1 nvd1 cvelist1 cisco1