Cisco Unified Computing System 4.0(4k)

CPE Details

Cisco Unified Computing System 4.0(4k)
cisco
unified_computing_system
4.0\(4k\)
2021-02-25
14h51 +00:00
2021-04-01
13h16 +00:00
CPE NVD
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
Notifications manage

CPE Name: cpe:2.3:a:cisco:unified_computing_system:4.0\(4k\):*:*:*:*:*:*:*

Informations

Vendor

cisco

Product

unified_computing_system

Version

4.0\(4k\)

Related CVE

Open and find in CVE List

CVE ID Published Description Score Severity
CVE-2021-34736 2021-10-21 02h50 +00:00 A vulnerability in the web-based management interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to cause the web-based management interface to unexpectedly restart. The vulnerability is due to insufficient input validation on the web-based management interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to cause the interface to restart, resulting in a denial of service (DoS) condition.
7.5
High
CVE-2021-1592 2021-08-25 19h11 +00:00 A vulnerability in the way Cisco UCS Manager software handles SSH sessions could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper resource management for established SSH sessions. An attacker could exploit this vulnerability by opening a significant number of SSH sessions on an affected device. A successful exploit could allow the attacker to cause a crash and restart of internal Cisco UCS Manager software processes and a temporary loss of access to the Cisco UCS Manager CLI and web UI. Note: The attacker must have valid user credentials to authenticate to the affected device.
4.3
Medium