CVSS: 7.8EPSS: 0%CPEs: 2EXPL: 0CVE-2014-0730
https://notcve.org/view.php?id=CVE-2014-0730
22 Feb 2014 — Cisco Unified Computing System (UCS) Central Software 1.1 and earlier allows local users to gain privileges via a CLI copy command in a local-mgmt context, aka Bug ID CSCul53128. Unified Computing System (UCS) Central Software 1.1 y anteriores permite a usuarios locales ganar privilegios a través de un comando copy de CLI en un contexto local-mgmt, también conocido como Bug ID CSCul53128. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2014-0730 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2013-5550
https://notcve.org/view.php?id=CVE-2013-5550
22 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via crafted command parameters that trigger hardware-component write operations, aka Bug ID CSCtq86549. El componente fabric-interconnect de Cisco Unified Computing System (UCS) permite a usuarios locales provocar una denegación de servicio a través de parámetros de comandos manipulados que provocan operaciones de escritura en componentes hardware, también conocido como Bug ID CSCtq86549... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-5550 • CWE-20: Improper Input Validation •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4115
https://notcve.org/view.php?id=CVE-2012-4115
21 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM virtual-media data, which allows man-in-the-middle attackers to obtain sensitive information by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug ID CSCtr72964. El componente frbric-interconnect de Cisco Unified Computing System (UCS) no cifra los los medios virtuales KVM lo que permite a atacantes man-in-the-middle obtener información sensible por inspecc... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4115 • CWE-310: Cryptographic Issues •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4112
https://notcve.org/view.php?id=CVE-2012-4112
19 Oct 2013 — The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) allows local users to gain privileges and execute arbitrary commands via crafted command parameters within the command-line interface, aka Bug ID CSCtr43330. El controlador Baseboard Management (BMC) en Cisco Unified Computing System (UCS) permite a usuarios locales conseguir privilegios y ejecutar comandos de forma arbitraria a traves de parámetros de comando manipulados en la interaface línea de comandos, tambien conocido co... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4112 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4113
https://notcve.org/view.php?id=CVE-2012-4113
19 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges and read arbitrary files via crafted command parameters within the command-line interface, aka Bug ID CSCtr43374. El componente fabric-interconnect en Cisco Unified Computing System (UCS) permite a usuarios locales obtener privilegios y leer archivos de forma arbitraria a traves de parametros de comando manipulados en el interface de línea de comandos, tambien conocido como Bug ID CSCtr43374. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4113 • CWE-264: Permissions, Privileges, and Access Controls •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4114
https://notcve.org/view.php?id=CVE-2012-4114
19 Oct 2013 — The fabric-interconnect KVM module in Cisco Unified Computing System (UCS) does not encrypt video data, which allows man-in-the-middle attackers to watch KVM display content by sniffing the network or modify this traffic by inserting packets into the client-server data stream, aka Bug ID CSCtr72949. El módulo fabric-interconnet de KVM en Cisco Unified Computing System (UCS) no cifra los datos de vídeo, lo que permite a atacantes man-in-the-middle ver contenidos de pantalla KVM por inspección de la red o mod... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4114 • CWE-310: Cryptographic Issues •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4116
https://notcve.org/view.php?id=CVE-2012-4116
19 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM media traffic, which allows remote attackers to obtain sensitive information, and consequently complete the authentication process for a server connection, by sniffing the network, aka Bug ID CSCtr72970. El componente fabric-interconnect de Cisco Unified Computing System (UCS) no cifra el tráfico de medios KVM, lo que permite a atacantes remotos obtener información sensible, y posteriormente completar el proceso d... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4116 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 5.9EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4117
https://notcve.org/view.php?id=CVE-2012-4117
19 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) does not properly verify X.509 certificates, which allows man-in-the-middle attackers to watch SSL KVM video-channel traffic or modify this traffic via a crafted certificate, aka Bug ID CSCtr73033. El componente frabric-interconnect en Cisco Unified Computing System (UCS) no comprueba correctamente los certificados X.509, lo que permite a atacantes man-in-the-middle para ver el tráfico SSL del canal de video KVM SSL o modificar este t... • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4117 • CWE-20: Improper Input Validation •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4105
https://notcve.org/view.php?id=CVE-2012-4105
13 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (component crash) via crafted "debug hardware" parameters, aka Bug ID CSCtq86468. El componente fabric-interconnect en Cisco Unified Computing System (UCS) permite a usuarios locales provocar una denegación de servicio (cuelgue del componente) a través de parámetros "debug hardware" manipulados, también conocido como Bug ID CSCtq86468. • http://osvdb.org/98437 • CWE-20: Improper Input Validation •
CVSS: 7.8EPSS: 0%CPEs: 1EXPL: 0CVE-2012-4106
https://notcve.org/view.php?id=CVE-2012-4106
13 Oct 2013 — The fabric-interconnect component in Cisco Unified Computing System (UCS) uses the same privilege level for execution of every script, which allows local users to gain privileges and execute arbitrary commands via an unspecified script-execution approach, aka Bug ID CSCtq86477. El componente fabric-interconnect en Cisco Unified Computing System (UCS) usa el mismo nivel de privilegio para la ejecución de cada script, lo que permite a usuarios locales obtener privilegios y ejecutar comandos arbitrarios a trav... • http://osvdb.org/98354 • CWE-264: Permissions, Privileges, and Access Controls •