Описание
The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656.
Ссылки
- Vendor Advisory
- Third Party AdvisoryVDB Entry
- Vendor Advisory
- Third Party AdvisoryVDB Entry
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:unified_computing_system:1.0\(2k\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_computing_system:1.0_base:*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_computing_system:1.1\(1m\):*:*:*:*:*:*:*
cpe:2.3:a:cisco:unified_computing_system:1.1_base:*:*:*:*:*:*:*
EPSS
Процентиль: 75%
0.0092
Низкий
8.5 High
CVSS2
Дефекты
CWE-287
Связанные уязвимости
github
больше 3 лет назад
The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656.
EPSS
Процентиль: 75%
0.0092
Низкий
8.5 High
CVSS2
Дефекты
CWE-287