Description
Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before 2.0(2m) allows remote attackers to bypass KVM authentication via a crafted authentication request to a Cisco Integrated Management Controller (IMC), aka Bug ID CSCts53746.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-ucsmulti
Scores
EPSS
0.0211
EPSS Percentile
79.4%
Details
CWE
CWE-287
Status
published
Products (36)
cisco/unified_computing_system_6120xp_fabric_interconnect
cisco/unified_computing_system_6140xp_fabric_interconnect
cisco/unified_computing_system_6248up_fabric_interconnect
cisco/unified_computing_system_6296up_fabric_interconnect
cisco/unified_computing_system_infrastructure_and_unified_computing_system_software
1.0
cisco/unified_computing_system_infrastructure_and_unified_computing_system_software
1.0\(2k\)
cisco/unified_computing_system_infrastructure_and_unified_computing_system_software
1.1
cisco/unified_computing_system_infrastructure_and_unified_computing_system_software
1.1\(1m\)
cisco/unified_computing_system_infrastructure_and_unified_computing_system_software
1.2
cisco/unified_computing_system_infrastructure_and_unified_computing_system_software
1.2\(1\)
... and 26 more
Published
Apr 25, 2013
Tracked Since
Feb 18, 2026