The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a vigilance database and tools to fix them.

Computer vulnerabilities of Cisco UCS

OpenSSL: Man-in-the-Middle via X509_V_FLAG_X509_STRICT
An attacker can act as a Man-in-the-Middle via X509_V_FLAG_X509_STRICT on OpenSSL, in order to read or write data in the session...
6443733, CERTFR-2021-AVI-221, CERTFR-2021-AVI-235, cisco-sa-openssl-2021-GHY28dJd, cpuapr2021, CVE-2021-3450, FEDORA-2021-c11da301be, FEDORA-2021-d049f32a82, FEDORA-2021-d934acdb42, FEDORA-2021-f347d1c866, FreeBSD-SA-21:07.openssl, RHSA-2021:1024-01, SB10356, SSB-439005, TNS-2021-05, VIGILANCE-VUL-34943
Cisco UCS Central Software: privilege escalation via Certificate Registration Process
An attacker can bypass restrictions via Certificate Registration Process of Cisco UCS Central Software, in order to escalate his privileges...
cisco-sa-ucs-invcert-eOpRvCKH, CSCvw35850, CVE-2021-1354, VIGILANCE-VUL-34480
Cisco UCS Manager Software: denial of service via CLI
An attacker can trigger a fatal error via CLI of Cisco UCS Manager Software, in order to trigger a denial of service...
cisco-sa-ucs-cli-dos-GQUxCnTe, CSCvr91760, CVE-2020-3504, VIGILANCE-VUL-33172
Cisco UCS Director: Cross Site Scripting
An attacker can trigger a Cross Site Scripting of Cisco UCS Director, in order to run JavaScript code in the context of the web site...
CERTFR-2020-AVI-487, cisco-sa-ucs-director-xss-O7T8ORYR, CSCvu08552, CVE-2020-3464, VIGILANCE-VUL-33022
Cisco UCS Director: directory traversal
An attacker can traverse directories of Cisco UCS Director, in order to read a file outside the service root path...
CERTFR-2020-AVI-377, cisco-sa-ucsd-task-path-trav-d67ZuAk7, CSCvs91039, CVE-2020-3241, VIGILANCE-VUL-32559
Cisco UCS Director: information disclosure
An attacker can bypass access restrictions to data of Cisco UCS Director, in order to obtain sensitive information...
CERTFR-2020-AVI-377, cisco-sa-ucsd-info-disclosure-gSMU8EKT, CSCvs49968, CSCvs49975, CVE-2020-3242, VIGILANCE-VUL-32558
Cisco NX-OS: IP filtering bypass with encapsulation
An attacker can encapsulate IP packets in IP packets in order to bypass the IP filtering rules or trigger a denial of service...
CERTFR-2020-AVI-330, cisco-sa-nxos-ipip-dos-kCT9X4, CVE-2020-10136, VIGILANCE-VUL-32373, VU#636397
Cisco Unified Computing System Director: privilege escalation
An attacker can bypass restrictions of Cisco Unified Computing System Director, in order to escalate his privileges...
CERTFR-2020-AVI-274, cisco-sa-ucsd-Ar6BAguz, CVE-2020-3329, VIGILANCE-VUL-32207
Cisco UCS Director: multiple vulnerabilities via REST API
An attacker can use several vulnerabilities via REST API of Cisco UCS Director...
CERTFR-2020-AVI-227, cisco-sa-ucsd-mult-vulns-UNfpdW4E, CVE-2020-3239, CVE-2020-3240, CVE-2020-3243, CVE-2020-3247, CVE-2020-3248, CVE-2020-3249, CVE-2020-3250, CVE-2020-3251, CVE-2020-3252, VIGILANCE-VUL-32042, ZDI-20-538, ZDI-20-539, ZDI-20-540, ZDI-20-541, ZDI-20-542, ZDI-20-543, ZDI-20-544
Cisco UCS Manager Software: privilege escalation via CLI Command Injection
An attacker can bypass restrictions via CLI Command Injection of Cisco UCS Manager Software, in order to escalate his privileges...
CERTFR-2020-AVI-118, cisco-sa-20200226-ucs-cli-cmdinj, CSCvq57926, CVE-2020-3173, VIGILANCE-VUL-31689
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco UCS: