Lucene search
K

7 matches found

Packet Storm
Packet Storm
•added 2020/06/05 12:0 a.m.•484 views

Cisco UCS Director Cloupia Script Remote Code Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Cisco UCS Director Cloupia Script RCE', 'Description' = %q This module exploits an authentication bypass and directory traversals in Cisco UCS...

7.5CVSS0.88374EPSS
Exploits5
Circl
Circl
•added 2020/06/04 8:4 p.m.•21 views

CVE-2020-3250

creationtimestamp| type| source ---|---|--- 2020-06-04 20:04:10+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/linux/http/ciscoucscloupiascriptrce.rb 2025-02-06 03:13:44+00:00| seen| MISP/a1e796df-2ad8-4c8d-8b69-737a004e72dd 2025-02-23 04:10:28+00:00| see...

9.8CVSS9.3AI score0.60158EPSS
Exploits4References1
Check Point Advisories
Check Point Advisories
•added 2020/05/10 12:0 a.m.•15 views

Cisco UCS Director Directory Traversal (CVE-2020-3250)

A directory traversal vulnerability exists in Cisco UCS Director. The vulnerability is due to insufficient validation of user input within the processing of the userAPIDownloadFile API...

7.5CVSS3.4AI score0.60158EPSS
Exploits4
Tenable Nessus
Tenable Nessus
•added 2020/04/21 12:0 a.m.•49 views

Cisco UCS Director and Cisco UCS Director Express for Big Data Multiple Vuulnerabilities (cisco-sa-ucsd-mult-vulns-UNfpdW4E)

According to its self-reported version, the remote host is running a version of Cisco UCS Director that is affected by multiple vulnerabilities in the REST API which allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device, including the...

10CVSS8.2AI score0.88374EPSS
Exploits7References27
NVD
NVD
•added 2020/04/15 9:15 p.m.•25 views

CVE-2020-3250

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

9.8CVSS9.8AI score0.60158EPSS
Exploits4References3
Vulnrichment
Vulnrichment
•added 2020/04/15 8:10 p.m.•11 views

CVE-2020-3250 Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section o...

9.8CVSS7.1AI score0.60158EPSS
Exploits4References3
CVE
CVE
•added 2020/04/15 8:10 p.m.•120 views

CVE-2020-3250

Cisco UCS Director and Cisco UCS Director Express for Big Data have REST API vulnerabilities that may allow remote attackers to bypass authentication and perform directory traversal on affected devices. The common root cause cited is insufficient access control validation and improper input handl...

9.8CVSS9.7AI score0.60158EPSS
Exploits4References3Affected Software2
Rows per page
Query Builder