File Access Vulnerability in Cisco UCS Central Software
CVE-2015-4286

Currently unrated

Key Information:

Vendor: Cisco
Status: Unified Computing System Central Software
Vendor: CVE Published:; 29 July 2015

What is CVE-2015-4286?

Cisco UCS Central Software 1.3(0.99) has a vulnerability in its web framework that allows remote attackers to access arbitrary files through specially crafted HTTP requests. This security flaw can expose sensitive information, making it crucial for users of this software to implement necessary security measures.

References

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1033112

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 29, 2015
Vulnerability Reserved
Jun 4, 2015