CVE-2020-3252

Name of the Vulnerable Software and Affected Versions Cisco UCS Director and Cisco UCS Director Express for Big Data (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the REST API, potentially allowing a remote attacker to bypass authentication or conduct directory traversal attacks. It is also associated with insufficient input validation, which could enable an attacker to gain unauthorized access to protected information by sending a specially crafted request.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.