Integrated Management Controller Supervisor@3.0(1c) Security Vulnerabilities and Issues — Integrated Management Controller Supervisor@3.0(1c) CVE List

Lucene search

CiscoIntegrated Management Controller Supervisor3.0(1c)

4 matches found

CVE•added 2017/04/20 10:59 p.m.•53 views

CVE-2017-6618

A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to perform a cross-site scripting (XSS) attack. The vulnerability is due to insufficient validation of user-supplied input by the affected software. An attacker...

5.4CVSS5.3AI score0.00363EPSS

CVE•added 2017/04/20 10:59 p.m.•51 views

CVE-2017-6617

A vulnerability in the session identification management functionality of the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an unauthenticated, remote attacker to hijack a valid user session on an affected system. The vulnerability exists because the affected sof...

5.4CVSS5.4AI score0.0029EPSS

CVE•added 2017/04/20 10:59 p.m.•45 views

CVE-2017-6616

A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to execute arbitrary code on an affected system. The vulnerability exists because the affected software does not sufficiently sanitize specific values that are ...

9CVSS8.8AI score0.0131EPSS

CVE•added 2017/04/20 10:59 p.m.•41 views

CVE-2017-6619

A vulnerability in the web-based GUI of Cisco Integrated Management Controller (IMC) 3.0(1c) could allow an authenticated, remote attacker to execute arbitrary commands on an affected system. The vulnerability exists because the affected software does not sufficiently sanitize user-supplied HTTP in...

9CVSS8.9AI score0.00846EPSS