CVE-2024-20344 in Unified Computing Systeminfo

Zusammenfassung

von MITRE • 29.02.2024

A vulnerability in system resource management in Cisco UCS 6400 and 6500 Series Fabric Interconnects that are in Intersight Managed Mode (IMM) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the Device Console UI of an affected device.

This vulnerability is due to insufficient rate-limiting of TCP connections to an affected device. An attacker could exploit this vulnerability by sending a high number of TCP packets to the Device Console UI. A successful exploit could allow an attacker to cause the Device Console UI process to crash, resulting in a DoS condition. A manual reload of the fabric interconnect is needed to restore complete functionality.

If you want to get best quality of vulnerability data, you may have to visit VulDB.

Reservieren

08.11.2023

Veröffentlichung

29.02.2024

Moderieren

akzeptiert

Eintrag

VDB-255133

CPE

bereit

EPSS

0.00826

KEV

nein

Aktivitäten

very low

Quellen

Interested in the pricing of exploits?

See the underground prices here!