Remote Authentication Bypass in Cisco UCS Integrated Management Controller
CVE-2013-1186

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Computing System Infrastructure And Unified Computing System Software; Unified Computing System 6120xp Fabric Interconnect; Unified Computing System 6140xp Fabric Interconnect; Unified Computing System 6248up Fabric Interconnect
Vendor: CVE Published:; 25 April 2013

Summary

A vulnerability allows remote attackers to bypass KVM (Keyboard, Video, Mouse) authentication by sending a specially crafted authentication request to the Cisco Integrated Management Controller (IMC) on affected versions of the Cisco Unified Computing System (UCS). This security flaw potentially exposes sensitive elements of the system to unauthorized access, affecting the overall integrity and confidentiality of the infrastructure.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Apr 25, 2013