Описание
Cisco UCS Invicta C3124SA Appliance 4.3.1 through 5.0.1, UCS Invicta Scaling System and Appliance, and Whiptail Racerunner improperly store a default SSH private key, which allows remote attackers to obtain root access via unspecified vectors, aka Bug ID CSCun71294.
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:cisco:ucs_invicta_c3124sa_appliance:4.3.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:ucs_invicta_c3124sa_appliance:4.5.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:ucs_invicta_c3124sa_appliance:5.0.1:*:*:*:*:*:*:*
EPSS
Процентиль: 81%
0.01486
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-264
Связанные уязвимости
CVSS3: 9.8
github
больше 3 лет назад
Cisco UCS Invicta C3124SA Appliance 4.3.1 through 5.0.1, UCS Invicta Scaling System and Appliance, and Whiptail Racerunner improperly store a default SSH private key, which allows remote attackers to obtain root access via unspecified vectors, aka Bug ID CSCun71294.
EPSS
Процентиль: 81%
0.01486
Низкий
9.8 Critical
CVSS3
10 Critical
CVSS2
Дефекты
CWE-264