2 matches found
CVE-2015-4259
The Integrated Management Controller on Cisco Unified Computing System UCS C servers with software 1.53 and 1.60.16 has a default SSL certificate, which makes it easier for man-in-the-middle attackers to bypass cryptographic protection mechanisms by leveraging knowledge of a private key, aka Bug...
CVE-2015-4259
Cisco UCS C-Series Servers IMC exposes a default SSL certificate, enabling MITM attacks by an attacker with knowledge of the private key. Affected product: Integrated Management Controller on UCS C servers running 1.5(3) or 1.6(0.16). Root cause: use of a default certificate that bypasses cryptog...