PT-2013-1619 · Cisco · Cisco Unified Computing System
Publicado
2013-09-24
·
Atualizado
2017-08-29
·
CVE-2012-4078
CVSS v2.0
8.5
Alta
| Vetor | AV:N/AC:M/Au:S/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Cisco Unified Computing System (UCS) (affected versions not specified)
Description
The issue concerns the Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS), which fails to properly handle SSH escape sequences. This allows remote authenticated users to bypass an authentication step via SSH port forwarding.
Recommendations
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Improper Authentication
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Cisco Unified Computing System