CVE-2015-4183

Cisco UCS Central Software 1.2(1a) - OS Command Injection via CLI Parameter

Title source: llm
STIX 2.1

Description

Cisco UCS Central Software 1.2(1a) allows local users to gain privileges for OS command execution via a crafted CLI parameter, aka Bug ID CSCut32795.

References (3)

Core 3
Core References
Vendor Advisory vendor-advisory x_refsource_cisco
http://tools.cisco.com/security/center/viewAlert.x?alertId=39324
Third Party Advisory, VDB Entry vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/75205
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1032584

Scores

EPSS 0.0058
EPSS Percentile 43.5%

Details

CWE
CWE-78
Status published
Products (1)
cisco/unified_computing_system 1.2\(1a\)
Published Jun 17, 2015
Tracked Since Feb 18, 2026