Lucene search

[email protected]CVE-2014-3348

HistorySep 10, 2014 - 10:55 a.m.

CVE-2014-3348

2014-09-1010:55:07

CWE-20

[email protected]

web.nvd.nist.gov

cve-2014-3348

integrated management controller

cisco

unified computing system

e-series blade servers

ssh

denial of service

imc hang

bug id cscuo69206

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

6.6 Medium

AI Score

Confidence

High

0.022 Low

EPSS

Percentile

89.5%

JSON

The SSH module in the Integrated Management Controller (IMC) before 2.3.1 in Cisco Unified Computing System on E-Series blade servers allows remote attackers to cause a denial of service (IMC hang) via a crafted SSH packet, aka Bug ID CSCuo69206.

Affected configurations

NVD

Node

ciscointegrated_management_controllerRange≤2.2.2

AND

ciscounified_computing_system_e140dMatch-

ciscounified_computing_system_e140dpMatch-

ciscounified_computing_system_e140s_m1Match-

ciscounified_computing_system_e140s_m2Match-

ciscounified_computing_system_e160dMatch-

ciscounified_computing_system_e160dpMatch-

ciscounified_computing_system_en120s_m2Match-

CPENameOperatorVersion
cisco:integrated_management_controllercisco integrated management controllerle2.2.2
cisco:unified_computing_system_e140dcisco unified computing system e140deq-
cisco:unified_computing_system_e140dpcisco unified computing system e140dpeq-
cisco:unified_computing_system_e140s_m1cisco unified computing system e140s m1eq-
cisco:unified_computing_system_e140s_m2cisco unified computing system e140s m2eq-
cisco:unified_computing_system_e160dcisco unified computing system e160deq-
cisco:unified_computing_system_e160dpcisco unified computing system e160dpeq-
cisco:unified_computing_system_en120s_m2cisco unified computing system en120s m2eq-

CPE	Name	Operator	Version
cisco:integrated_management_controller	cisco integrated management controller	le	2.2.2
cisco:unified_computing_system_e140d	cisco unified computing system e140d	eq	-
cisco:unified_computing_system_e140dp	cisco unified computing system e140dp	eq	-
cisco:unified_computing_system_e140s_m1	cisco unified computing system e140s m1	eq	-
cisco:unified_computing_system_e140s_m2	cisco unified computing system e140s m2	eq	-
cisco:unified_computing_system_e160d	cisco unified computing system e160d	eq	-
cisco:unified_computing_system_e160dp	cisco unified computing system e160dp	eq	-
cisco:unified_computing_system_en120s_m2	cisco unified computing system en120s m2	eq	-