Cisco Unified Computing System Vulnérabilités

Chronologie

Version

2.0	7
2.0(1.68)	5
3.1(1k)A	5
2.5(2)TS4	2
3.0(2c)A	2

Contre-mesures

Official Fix	34
Temporary Fix	0
Workaround	1
Unavailable	0
Not Defined	52

Exploitabilité

High	1
Functional	1
Proof-of-Concept	1
Unproven	9
Not Defined	75

Vecteur d'accès

Not Defined	0
Physical	0
Local	37
Adjacent	4
Network	46

Authentification

Not Defined	0
High	1
Low	41
None	45

Interaction de l'utilisateur

Not Defined	0
Required	7
None	80

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	3
≤5	8
≤6	26
≤7	18
≤8	22
≤9	4
≤10	6

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	9
≤6	26
≤7	21
≤8	19
≤9	3
≤10	5

VulDB

≤1	0
≤2	0
≤3	0
≤4	3
≤5	8
≤6	31
≤7	13
≤8	23
≤9	3
≤10	6

NVD

≤1	0
≤2	0
≤3	0
≤4	1
≤5	3
≤6	0
≤7	4
≤8	7
≤9	2
≤10	4

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	1
≤6	1
≤7	1
≤8	0
≤9	0
≤10	0

Fournisseur

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Exploiter 0 jour

<1k	0
<2k	0
<5k	5
<10k	26
<25k	40
<50k	16
<100k	0
≥100k	0

Exploiter aujourd'hui

<1k	38
<2k	9
<5k	15
<10k	24
<25k	1
<50k	0
<100k	0
≥100k	0

Affected Versions (38): 1.0, 1.1, 1.2, 1.2(1a), 1.3, 1.3(0.1), 1.3(1b), 1.4, 1.4(1a), 1.4(x), 1.5(3), 1.6(0.16), 2.0, 2.0(1.68), 2.0(1m), 2.0(1x), 2.1, 2.2, 2.2(3b), 2.2(3f)A, 2.2(5b)A, 2.2.1, 2.2.2, 2.2.3, 2.2.4, 2.2.5, 2.3, 2.5(2)TS4, 3.0(2c)A, 3.0(2c)TS9, 3.0(2d), 3.1(1k)A, 3.1(2c)B, 4.0.0.2, 5.5(0.1), 6.0(0.0), 6400, 6500

Link to Product Website: https://www.cisco.com/

Type de logiciel: Virtualization Software

Publié	Base	Temp	Vulnérabilité	0day	Aujourd'hui	Exp	Con	CTI	CVE
28/02/2024	6.5	6.4	Cisco NX-OS LLDP buffer overflow	$5k-$25k	$5k-$25k	Not Defined	Official Fix	0.00	CVE-2024-20294
28/02/2024	5.3	5.2	Cisco Unified Computing System Intersight Managed Mode dénie de service	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2024-20344
05/02/2021	3.5	3.4	Cisco Unified Computing System Registration API authentification faible	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2021-1354
05/06/2019	5.5	5.5	Cisco Unified Computing System BIOS Upgrade Utility authentification faible	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.00	CVE-2019-1880
05/10/2018	9.8	9.6	Cisco Connected Safety/Security Unified Computing System Video Surveillance Manager authentification faible	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.02	CVE-2018-15427
07/06/2018	6.5	6.5	Cisco Unified Computing System RBAC elévation de privilèges	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2018-0338
19/04/2018	8.1	7.9	Cisco Unified Computing System Role-based Resource Checking authentification faible	$5k-$25k	$0-$5k	Not Defined	Official Fix	0.00	CVE-2018-0238
08/03/2018	5.7	5.7	Cisco Unified Computing System Web-based Management Interface cross site scripting	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.03	CVE-2018-0219
02/11/2017	7.8	7.4	Cisco Firepower 9300 elévation de privilèges	$5k-$25k	$0-$5k	Proof-of-Concept	Not Defined	0.00	CVE-2017-12243
07/04/2017	6.2	6.2	Cisco Unified Computing System Integrated Management Controller Redirect	$5k-$25k	$5k-$25k	Not Defined	Not Defined	0.07	CVE-2017-6604