Lucene search

K
cve[email protected]CVE-2014-0709
HistoryFeb 22, 2014 - 9:55 p.m.

CVE-2014-0709

2014-02-2221:55:09
CWE-255
web.nvd.nist.gov
20
cisco
ucs director
cloupia
vulnerability
hardcoded password
remote access
ssh
bug id
cscui73930
nvd

7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

74.5%

Cisco UCS Director (formerly Cloupia) before 4.0.0.3 has a hardcoded password for the root account, which makes it easier for remote attackers to obtain administrative access via an SSH session to the CLI interface, aka Bug ID CSCui73930.

Affected configurations

NVD
Node
ciscoucs_directorRange4.0.0.2
OR
ciscoucs_directorMatch4.0.0.0
OR
ciscoucs_directorMatch4.0.0.1

7 High

AI Score

Confidence

Low

9.3 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

74.5%