CVE-2012-4074
Severity CVSS v4.0:
Pending analysis
Type:
CWE-255
Credentials Management
Publication date:
20/09/2013
Last modified:
23/09/2016
Description
The Board Management Controller (BMC) in the Serial over LAN (SoL) subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded private key, which allows man-in-the-middle attackers to obtain sensitive information or modify the data stream by leveraging knowledge of this key, aka Bug ID CSCte90338.
Impact
Base Score 2.0
5.80
Severity 2.0
MEDIUM
Vulnerable products and versions
CPE | From | Up to |
---|---|---|
cpe:2.3:h:cisco:unified_computing_system:-:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page