EUVD-2019-10282

Malware in sbrugna...

The vulnerability of the SSH protocol implementation in Cisco Unified Computing System servers of the Cisco UCS B-Series, Managed C-Series, and X-Series models allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the SSH protocol implementation in Cisco Unified Computing System servers of the Cisco UCS B-Series, Managed C-Series, and X-Series models is related to insufficient channel restrictions for specific endpoints. Exploiting this vulnerability can allow an attacker operating...

CVE-2024-20365 Cisco Integrated Management Controller Redfish Command Injection Vulnerability

A vulnerability in the Redfish API of Cisco UCS B-Series, Cisco UCS Managed C-Series, and Cisco UCS X-Series Servers could allow an authenticated, remote attacker with administrative privileges to perform command injection attacks on an affected system and elevate privileges to root. This...

CVE-2019-1725

A vulnerability in the local management CLI implementation for specific commands on the Cisco UCS B-Series Blade Servers could allow an authenticated, local attacker to overwrite an arbitrary file on disk. It is also possible the attacker could inject CLI command parameters that should not be...

CVE-2019-1725 Cisco UCS B-Series Blade Servers Local Management CLI Arbitrary File Creation or CLI Parameter Injection Vulnerability

A vulnerability in the local management CLI implementation for specific commands on the Cisco UCS B-Series Blade Servers could allow an authenticated, local attacker to overwrite an arbitrary file on disk. It is also possible the attacker could inject CLI command parameters that should not be...

CVE-2019-1725

CVE-2019-1725 affects Cisco UCS B-Series Blade Servers. A vulnerability in the local management CLI allows an authenticated, local attacker to overwrite arbitrary files on disk or inject CLI parameters for a subset of commands due to insufficient input validation. The issue is specific to certain...

CVE-2017-6604

A vulnerability in the web interface of Cisco Integrated Management Controller IMC Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unified Computing System UCS...

Design/Logic Flaw

A vulnerability in the web interface of Cisco Integrated Management Controller IMC Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unified Computing System UCS...

CVE-2017-6604

A vulnerability in the web interface of Cisco Integrated Management Controller IMC Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unified Computing System UCS...

Cisco UCS B-Series Blade Servers Denial of Service Vulnerability

Cisco Unified Computing System UCS is an x86 architecture data center server platform. A security vulnerability exists in the Cisco UCS B-Series Blade Servers. A local attacker could exploit this vulnerability to cause the host operating system or BMC to hang...