7 matches found
Cisco IMC Supervisor and Cisco UCS Director Command Injection (CVE-2019-1936)
A command injection vulnerability exists in Cisco IMC Supervisor and Cisco UCS Director. Successful exploitation of this vulnerability would allow remote attackers to execute arbitrary commands in the affected system...
Cisco UCS Director authentication bypass and command injection
Added: 09/13/2019 CVE: CVE-2019-1937 Background Cisco UCS Director is a heterogeneous platform for private cloud Infrastructure as a Service IaaS. Problem An authentication bypass vulnerability in the ClientServlet allows unauthenticated users to gain an administrative session. Furthermore, a...
The vulnerability affects the web interface for managing the Cisco Integrated Management Controller (IMC) Supervisor, as well as tools for managing physical infrastructure and IaaS virtual environments like Cisco UCS Director and Cisco UCS Director Express for Big Data. This allows a malicious actor to trigger a service failure.
The vulnerability in the web interface for managing the Cisco Integrated Management Controller IMC Supervisor, as well as in tools for managing physical infrastructure and IaaS virtual environments like Cisco UCS Director and Cisco UCS Director Express for Big Data, is related to the lack of...
PT-2019-3234 · Cisco · Cisco Ucs Director Express For Big Data +2
Name of the Vulnerable Software and Affected Versions: Cisco Integrated Management Controller IMC Supervisor versions affected versions not specified Cisco UCS Director versions affected versions not specified Cisco UCS Director Express for Big Data versions affected versions not specified...
Sql injection
A vulnerability in the web framework code of Cisco Integrated Management Controller IMC Supervisor could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could...
CVE-2018-15447 Cisco Integrated Management Controller Supervisor SQL Injection Vulnerability
A vulnerability in the web framework code of Cisco Integrated Management Controller IMC Supervisor could allow an unauthenticated, remote attacker to execute arbitrary SQL queries. The vulnerability is due to a lack of proper validation of user-supplied input in SQL queries. An attacker could...
Cisco Integrated Management Controller Supervisor Software and UCS Director Software Cross-Site Scripting Vulnerability
Cisco Integrated Management Controller IMC Supervisor Software and UCS Director Software are both products of Cisco Corporation.Cisco Integrated Management Controller IMC Supervisor Software is a set of tools for managing UCS Unified Computing System. Cisco Integrated Management Controller IMC...