This page lists publicly disclosed CVE vulnerabilities affecting cisco unified_computing_system (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2012-4109 | The clear sshkey command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq86559. | [email protected] | 6.8 | 0.35% | 2013-10-02 | 2026-06-16 |
| CVE-2012-4104 | Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706. | [email protected] | 6.6 | 0.35% | 2013-10-02 | 2026-06-16 |
| CVE-2012-4103 | ethanalyzer in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq02686. | [email protected] | 6.8 | 0.35% | 2013-10-02 | 2026-06-16 |
| CVE-2012-4102 | The activate firmware command in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges by embedding commands in an unspecified parameter, aka Bug ID CSCtq02600. | [email protected] | 6.8 | 0.35% | 2013-10-02 | 2026-06-16 |
| CVE-2012-4095 | The local file editor in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to gain privileges, and read or modify arbitrary files, via unspecified key bindings, aka Bug ID CSCtn04521. | [email protected] | 5.5 | 0.26% | 2013-10-02 | 2026-06-16 |
| CVE-2012-4096 | The local file editor in the Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) allows local users to gain privileges and modify arbitrary fabric-interconnect files, in the context of a vi process, via unspecified commands, aka Bug ID CSCtn06574. | [email protected] | 6.2 | 0.30% | 2013-10-01 | 2026-06-16 |
| CVE-2012-1313 | The remote debug shell on the PALO adapter card in Cisco Unified Computing System (UCS) allows local users to gain privileges via malformed show-macstats parameters, aka Bug ID CSCub13772. | [email protected] | 6.5 | 0.36% | 2013-09-27 | 2026-06-16 |
| CVE-2012-4092 | The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attackers to read or modify an inter-device data stream by spoofing an identity, aka Bug ID CSCtk00683. | [email protected] | 5.8 | 0.84% | 2013-09-26 | 2026-06-16 |
| CVE-2012-4088 | The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an unspecified user account, which makes it easier for remote attackers to read or modify files by leveraging knowledge of this password, aka Bug ID CSCtg20769. | [email protected] | 4.3 | 0.60% | 2013-09-26 | 2026-06-16 |
| CVE-2012-4079 | The XML API service in the Fabric Interconnect component in Cisco Unified Computing System (UCS) allows remote attackers to cause a denial of service (API service outage) via a malformed XML document in a packet, aka Bug ID CSCtg48206. | [email protected] | 5.0 | 1.22% | 2013-09-26 | 2026-06-16 |
| CVE-2012-4086 | A setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20790. | [email protected] | 5.1 | 2.92% | 2013-09-25 | 2026-06-16 |
| CVE-2012-4094 | Buffer overflow in the Smart Call Home feature in the fabric interconnect in Cisco Unified Computing System (UCS) allows remote attackers to cause a denial of service by reading and forging control messages associated with Smart Call Home reports, aka Bug ID CSCtl00198. | [email protected] | 5.4 | 2.05% | 2013-09-24 | 2026-06-16 |
| CVE-2012-4089 | MCTOOLS in the fabric interconnect in Cisco Unified Computing System (UCS) allows local users to execute arbitrary Baseboard Management Controller (BMC) commands by leveraging (1) local, (2) shell-level, or (3) debug-level privileges at the operating-system layer, aka Bug ID CSCtg76239. | [email protected] | 6.6 | 0.32% | 2013-09-24 | 2026-06-16 |
| CVE-2012-4087 | A cluster setup script for fabric interconnect devices in Cisco Unified Computing System (UCS) allows remote attackers to execute arbitrary commands via invalid parameters, aka Bug ID CSCtg20793. | [email protected] | 5.1 | 1.94% | 2013-09-24 | 2026-06-16 |
| CVE-2012-4085 | The Intelligent Platform Management Interface (IPMI) implementation in the Blade Management Controller in Cisco Unified Computing System (UCS) allows remote attackers to enumerate valid usernames by observing IPMI interface responses, aka Bug ID CSCtg20761. | [email protected] | 5.0 | 1.65% | 2013-09-24 | 2026-06-16 |
| CVE-2012-4078 | The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656. | [email protected] | 8.5 | 3.54% | 2013-09-24 | 2026-06-16 |
| CVE-2012-4082 | MCTools in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to gain privileges by entering crafted command-line parameters on a Fabric Interconnect device, aka Bug ID CSCtg20749. | [email protected] | 6.8 | 0.34% | 2013-09-20 | 2026-06-16 |
| CVE-2012-4081 | MCServer in the Cisco Management Controller in Cisco Unified Computing System (UCS) allows local users to cause a denial of service (application crash) via invalid MCTools parameters, aka Bug ID CSCtg20734. | [email protected] | 4.6 | 0.30% | 2013-09-20 | 2026-06-16 |
| CVE-2012-4093 | The Manager component in Cisco Unified Computing System (UCS) allows local users to cause a denial of service via an invalid Smart Call Home contact address, aka Bug ID CSCtl00186. | [email protected] | 4.6 | 0.27% | 2013-09-20 | 2026-06-16 |
| CVE-2012-4083 | Multiple buffer overflows in the administrative web interface in Cisco Unified Computing System (UCS) allow remote authenticated users to cause a denial of service (memory corruption and session termination) via long string values for unspecified parameters, aka Bug ID CSCtg20751. | [email protected] | 4.0 | 1.73% | 2013-09-20 | 2026-06-16 |