Lucene search
K

51 matches found

BDU FSTEC
BDU FSTEC
added 2020/05/29 12:0 a.m.5 views

The vulnerability of the REST API interface for controlling physical infrastructure and virtual environments in Cisco UCS Director and Cisco UCS Director Express for Big Data allows a attacker to execute arbitrary code.

The vulnerability of the REST API interface used for controlling physical infrastructure and virtual environments in Cisco UCS Director and Cisco UCS Director Express for Big Data is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execut...

9.8CVSS7.9AI score0.38693EPSS
Exploits0References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/05/29 12:0 a.m.7 views

The vulnerability of the REST API interface for controlling physical infrastructure and virtual environments in Cisco UCS Director and Cisco UCS Director Express for Big Data allows a attacker to execute arbitrary code.

The vulnerability of the REST API interface for controlling physical infrastructure and virtual environments of Cisco UCS Director and Cisco UCS Director Express for Big Data is related to insufficient validation of input data. Exploiting this vulnerability allows a malicious actor to execute...

9.8CVSS8.1AI score0.61516EPSS
Exploits1References2Affected Software2
BDU FSTEC
BDU FSTEC
added 2020/05/29 12:0 a.m.5 views

The vulnerability of the REST API interface for managing physical infrastructure and virtual environments in Cisco UCS Director and Cisco UCS Director Express for Big Data allows a attacker to trigger a service failure.

The vulnerability of the REST API interface for managing physical infrastructure and virtual environments in Cisco UCS Director and Cisco UCS Director Express for Big Data is related to insufficient validation of input data. Exploiting this vulnerability can allow a malicious actor to trigger...

9.8CVSS7.4AI score0.23056EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2020/05/06 5:15 p.m.6 views

CVE-2020-3329

A vulnerability in role-based access control of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. The vulnerability is due to...

4.3CVSS5.9AI score0.00675EPSS
Exploits0References1
Prion
Prion
added 2020/05/06 5:15 p.m.18 views

Design/Logic Flaw

A vulnerability in role-based access control of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. The vulnerability is due to...

4CVSS4.9AI score0.00675EPSS
Exploits0References1Affected Software3
Vulnrichment
Vulnrichment
added 2020/05/06 4:40 p.m.7 views

CVE-2020-3329 Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Role-Based Access Control Vulnerability

A vulnerability in role-based access control of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. The vulnerability is due to...

4.3CVSS7.1AI score0.00675EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/05/06 4:40 p.m.27 views

CVE-2020-3329 Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Role-Based Access Control Vulnerability

A vulnerability in role-based access control of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. The vulnerability is due to...

4.3CVSS4.8AI score0.00675EPSS
Exploits0References1
Cisco
Cisco
added 2020/05/06 4:0 p.m.29 views

Cisco IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data Role-Based Access Control Vulnerability

A vulnerability in role-based access control of Cisco Integrated Management Controller IMC Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. The vulnerability is due to...

4.3CVSS4.8AI score0.00675EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/20 12:0 a.m.3 views

Cisco UCS Director and Cisco UCS Director Express for Big Data Path Traversal Vulnerability (CNVD-2020-31979)

Cisco UCS Director and Cisco UCS Director Express for Big Data are both products from Cisco, Inc. Cisco UCS Director is a heterogeneous platform for private cloud Infrastructure as a Service IaaS. Cisco UCS Director is a heterogeneous platform for private cloud infrastructure-as-a-service IaaS. A...

9.8CVSS6.9AI score0.60158EPSS
Exploits4References1
CNVD
CNVD
added 2020/04/16 12:0 a.m.4 views

Cisco UCS Director and Cisco UCS Director Express for Big Data Path Traversal Vulnerability (CNVD-2020-25345)

Cisco UCS Director and Cisco UCS Director Express for Big Data are both products from Cisco, Inc. Cisco UCS Director is a heterogeneous platform for private cloud Infrastructure as a Service IaaS. Cisco UCS Director is a heterogeneous platform for private cloud infrastructure-as-a-service IaaS. A...

9.8CVSS7.4AI score0.73566EPSS
Exploits0References1
CNVD
CNVD
added 2020/04/16 12:0 a.m.2 views

Cisco UCS Director and Cisco UCS Director Express for Big Data Path Traversal Vulnerability (CNVD-2020-25348)

Cisco UCS Director and Cisco UCS Director Express for Big Data are both products from Cisco, Inc. Cisco UCS Director is a heterogeneous platform for private cloud Infrastructure as a Service IaaS. Cisco UCS Director is a heterogeneous platform for private cloud infrastructure-as-a-service IaaS. A...

10CVSS7.2AI score0.75072EPSS
Exploits0References1
OSV
OSV
added 2020/04/15 9:15 p.m.5 views

CVE-2020-3239

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

8.8CVSS7.3AI score0.73566EPSS
Exploits0References2
NVD
NVD
added 2020/04/15 9:15 p.m.23 views

CVE-2020-3250

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

9.8CVSS9.8AI score0.60158EPSS
Exploits4References3
OSV
OSV
added 2020/04/15 9:15 p.m.3 views

CVE-2020-3251

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

8.8CVSS5.9AI score0.61516EPSS
Exploits1References1
OSV
OSV
added 2020/04/15 9:15 p.m.3 views

CVE-2020-3240

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

7.3CVSS7.2AI score0.38693EPSS
Exploits0References2
OSV
OSV
added 2020/04/15 9:15 p.m.2 views

CVE-2020-3250

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

9.8CVSS7.3AI score0.60158EPSS
Exploits4References3
Prion
Prion
added 2020/04/15 9:15 p.m.23 views

Directory traversal

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

10CVSS9.6AI score0.7391EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2020/04/15 9:15 p.m.15 views

Directory traversal

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

10CVSS9.6AI score0.75072EPSS
Exploits0References2Affected Software2
Prion
Prion
added 2020/04/15 9:15 p.m.19 views

Directory traversal

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

7.5CVSS9.6AI score0.88374EPSS
Exploits5References3Affected Software2
Vulnrichment
Vulnrichment
added 2020/04/15 8:11 p.m.12 views

CVE-2020-3252 Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

9.8CVSS7.2AI score0.05326EPSS
Exploits1References1
Rows per page
Query Builder