CVE-2013-1186

Cisco UCS <1.4(4)-2.0(2m - Auth Bypass

Title source: llm

Description

Cisco Unified Computing System (UCS) 1.x before 1.4(4) and 2.x before 2.0(2m) allows remote attackers to bypass KVM authentication via a crafted authentication request to a Cisco Integrated Management Controller (IMC), aka Bug ID CSCts53746.

References (1)

[Vendor Advisory] http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20130424-ucsmulti

Scores

EPSS 0.0023

EPSS Percentile 46.0%

Classification

CWE

CWE-287

Status draft

Affected Products (36)

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

cisco/unified_computing_system_infrastructure_and_unified_computing_system_software

... and 21 more

Timeline

Published Apr 25, 2013

Tracked Since Feb 18, 2026