CVE-2012-4116

Cisco Unified Computing System - Unauthenticated Sensitive Information Exposure via Unencrypted KVM Media Traffic

Title source: llm
STIX 2.1

Description

The fabric-interconnect component in Cisco Unified Computing System (UCS) does not encrypt KVM media traffic, which allows remote attackers to obtain sensitive information, and consequently complete the authentication process for a server connection, by sniffing the network, aka Bug ID CSCtr72970.

References (1)

Core 1
Core References

Scores

EPSS 0.0112
EPSS Percentile 62.3%

Details

CWE
CWE-200
Status published
Products (1)
cisco/unified_computing_system
Published Oct 19, 2013
Tracked Since Feb 18, 2026