Lucene search

[email protected]CVE-2013-1182

HistoryOct 03, 2022 - 4:14 p.m.

CVE-2013-1182

2022-10-0316:14:47

CWE-264

[email protected]

web.nvd.nist.gov

cisco

unified computing system

ucs

ldap

authentication

remote attack

cve-2013-1182

nvd

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6.9 Medium

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

66.3%

JSON

The login page in the Web Console in the Manager component in Cisco Unified Computing System (UCS) before 1.0(2h), 1.1 before 1.1(1j), and 1.3(x) allows remote attackers to bypass LDAP authentication via a malformed request, aka Bug ID CSCtc91207.

Affected configurations

NVD

Node

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareRange≤1.0

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.1

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1c\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1m\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1n\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1o\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1p\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1q\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1t\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1w\)

ciscounified_computing_system_infrastructure_and_unified_computing_system_softwareMatch1.3\(1y\)

AND

ciscounified_computing_system_6120xp_fabric_interconnectMatch-

ciscounified_computing_system_6140xp_fabric_interconnectMatch-

ciscounified_computing_system_6248up_fabric_interconnectMatch-

ciscounified_computing_system_6296up_fabric_interconnectMatch-

ciscounified_computing_system_integrated_management_controllerMatch-

CPENameOperatorVersion
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwarele1.0
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.1
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1c\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1m\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1n\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1o\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1p\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1q\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1t\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_softwarecisco unified computing system infrastructure and unified computing system softwareeq1.3\(1w\)

CPE	Name	Operator	Version
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	le	1.0
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.1
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1c\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1m\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1n\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1o\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1p\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1q\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1t\)
cisco:unified_computing_system_infrastructure_and_unified_computing_system_software	cisco unified computing system infrastructure and unified computing system software	eq	1.3\(1w\)