Vulnerabilities (CVE)

Vendor filter

Cisco Subscribe

Product filter

Unified Computing System Subscribe

Filter

94 total CVE
CVE Vendors Products Updated CVSS
CVE-2019-1966 1 Cisco 2 Unified Computing System, Nx-os 2019-10-09 7.2
A vulnerability in a specific CLI command within the local management (local-mgmt) context for Cisco UCS Fabric Interconnect Software could allow an authenticated, local attacker to gain elevated privileges as the root user on an affected device....
CVE-2019-1908 1 Cisco 1 Unified Computing System 2019-10-09 5.0
A vulnerability in the Intelligent Platform Management Interface (IPMI) implementation of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to view sensitive system information. The vulnerability is due...
CVE-2019-1907 1 Cisco 2 Integrated Management Controller Supervisor, Unified Computing System 2019-10-09 6.5
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to set sensitive configuration values and gain elevated privileges. The vulnerability is due to improper handling of...
CVE-2019-1900 1 Cisco 1 Unified Computing System 2019-10-09 7.8
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to cause the web server process to crash, causing a denial of service (DoS) condition on an affected system. The...
CVE-2019-1896 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary commands and obtain root privileges. The vulnerability is due to insufficient...
CVE-2019-1885 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the Redfish protocol of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject and execute arbitrary commands with root privileges on an affected device. The vulnerability is due to...
CVE-2019-1883 1 Cisco 1 Unified Computing System 2019-10-09 7.2
A vulnerability in the command-line interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker with read-only credentials to inject arbitrary commands that could allow them to obtain root privileges....
CVE-2019-1879 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-10-09 7.2
A vulnerability in the CLI of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient validation of...
CVE-2019-1871 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the Import Cisco IMC configuration utility of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition and implement arbitrary commands with root...
CVE-2019-1865 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on an affected...
CVE-2019-1864 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on an affected...
CVE-2019-1863 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to make unauthorized changes to the system configuration. The vulnerability is due to...
CVE-2019-1850 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on an affected...
CVE-2019-1725 1 Cisco 1 Unified Computing System 2019-10-09 3.6
A vulnerability in the local management CLI implementation for specific commands on the Cisco UCS B-Series Blade Servers could allow an authenticated, local attacker to overwrite an arbitrary file on disk. It is also possible the attacker could...
CVE-2019-1634 1 Cisco 1 Unified Computing System 2019-10-09 9.0
A vulnerability in the Intelligent Platform Management Interface (IPMI) of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to inject arbitrary commands that are executed with root privileges on the...
CVE-2019-1632 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-10-09 6.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected...
CVE-2019-1631 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-10-09 5.0
A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to access potentially sensitive system usage information. The vulnerability is due to a lack of...
CVE-2019-1630 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-10-09 2.1
A vulnerability in the firmware signature checking program of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condition. The...
CVE-2019-1629 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-10-09 5.0
A vulnerability in the configuration import utility of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to have write access and upload arbitrary data to the filesystem. The vulnerability is due to a...
CVE-2019-1628 1 Cisco 2 Integrated Management Controller, Unified Computing System 2019-10-09 2.1
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condition on an affected device. The vulnerability...