Unrated severityNVD Advisory· Published Apr 15, 2020· Updated Nov 15, 2024

Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data

CVE-2020-3243

Description

Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

Affected products

Cisco Systems, Inc./Ucs Directorcpe-rescue
Range: n/a

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsd-mult-vulns-UNfpdW4Emitrevendor-advisoryx_refsource_CISCO
packetstormsecurity.com/files/157955/Cisco-UCS-Director-Cloupia-Script-Remote-Code-Execution.htmlmitrex_refsource_MISC
www.zerodayinitiative.com/advisories/ZDI-20-540/mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.072
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000