CVE-2015-0701
Cisco UCS Central Software versions prior to 1.3(1a) are affected by a command-execution vulnerability exposed via the web interface. The root cause is improper input validation in the web framework, allowing an unauthenticated, remote attacker to craft an HTTP request that executes arbitrary OS ...