CVE-2012-4116
Cisco Unified Computing System - Unauthenticated Sensitive Information Exposure via Unencrypted KVM Media Traffic
Title source: llmDescription
The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM media traffic, which allows remote attackers to obtain sensitive information, and consequently complete the authentication process for a server connection, by sniffing the network, aka Bug ID CSCtr72970.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4116
Scores
EPSS
0.0112
EPSS Percentile
62.3%
Details
CWE
CWE-200
Status
published
Products (1)
cisco/unified_computing_system
Published
Oct 19, 2013
Tracked Since
Feb 18, 2026