Cisco UCS Director Express For Big Data 2.0.0.0

CPE Details

Cisco UCS Director Express For Big Data 2.0.0.0
2.0.0.0
2020-05-14
11h38 +00:00
2020-05-14
11h38 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:ucs_director_express_for_big_data:2.0.0.0:*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

ucs_director_express_for_big_data

Version

2.0.0.0

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2020-3329 2020-05-06 16h40 +00:00 A vulnerability in role-based access control of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. The vulnerability is due to incorrect allocation of the enable/disable action button under the role-based access control code on an affected system. An attacker could exploit this vulnerability by authenticating as a read-only user and then updating the roles of other users to disable them. A successful exploit could allow the attacker to disable users, including administrative users.
4.3
Medium
CVE-2020-3252 2020-04-15 20h11 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
6.5
Medium
CVE-2020-3251 2020-04-15 20h11 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
8.8
High
CVE-2020-3250 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
9.8
Critical
CVE-2020-3249 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
7.5
High
CVE-2020-3248 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
9.8
Critical
CVE-2020-3247 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
9.8
Critical
CVE-2020-3243 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
9.8
Critical
CVE-2020-3240 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
7.3
High
CVE-2020-3239 2020-04-15 20h10 +00:00 Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
8.8
High