CVE-2012-4078

The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
8.5 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:C/I:C/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
VendorProductVersion
ciscounified_computing_system
1.0\(2k\)
ciscounified_computing_system
1.0_base:_base
ciscounified_computing_system
1.1\(1m\)
ciscounified_computing_system
1.1_base:_base
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078
http://www.securitytracker.com/id/1029084
https://exchange.xforce.ibmcloud.com/vulnerabilities/87367
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078
http://www.securitytracker.com/id/1029084
https://exchange.xforce.ibmcloud.com/vulnerabilities/87367