CVE-2012-4089

MCTOOLS in the fabric interconnect in Cisco Unified Computing System (UCS) allows local users to execute arbitrary Baseboard Management Controller (BMC) commands by leveraging (1) local, (2) shell-level, or (3) debug-level privileges at the operating-system layer, aka Bug ID CSCtg76239.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.6 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:S/C:C/I:C/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 33%
VendorProductVersion
ciscounified_computing_system
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4089
http://www.securitytracker.com/id/1029082
https://exchange.xforce.ibmcloud.com/vulnerabilities/87369
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4089
http://www.securitytracker.com/id/1029082
https://exchange.xforce.ibmcloud.com/vulnerabilities/87369