VYPR

IMC

by Cisco Systems, Inc.

CVEs (14)

  • CVE-2026-20094HigApr 1, 2026
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with read-only privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is due to…

  • CVE-2019-1871HigAug 21, 2019
    risk 0.47cvss 7.2epss 0.03

    A vulnerability in the Import Cisco IMC configuration utility of Cisco Integrated Management Controller (IMC) could allow an authenticated, remote attacker to cause a denial of service (DoS) condition and implement arbitrary commands with root privileges on an affected device.…

  • CVE-2026-20097MedApr 1, 2026
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to execute arbitrary code as the root user. This vulnerability is due to improper validation of user-supplied input to the web-based…

  • CVE-2026-20096MedApr 1, 2026
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is…

  • CVE-2026-20095MedApr 1, 2026
    risk 0.42cvss 6.5epss 0.01

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with admin-level privileges to perform command injection attacks on an affected system and execute arbitrary commands as the root user. This vulnerability is…

  • CVE-2026-20085MedApr 1, 2026
    risk 0.40cvss 6.1epss 0.00

    A vulnerability in the web-based management interface of Cisco IMC could allow an unauthenticated, remote attacker to conduct a reflected XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input. An attacker could exploit…

  • CVE-2019-1630MedJun 20, 2019
    risk 0.36cvss 5.5epss 0.00

    A vulnerability in the firmware signature checking program of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient checking…

  • CVE-2019-1629MedJun 20, 2019
    risk 0.35cvss 5.3epss 0.02

    A vulnerability in the configuration import utility of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to have write access and upload arbitrary data to the filesystem. The vulnerability is due to a failure to delete temporarily…

  • CVE-2026-20090MedApr 1, 2026
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input.…

  • CVE-2026-20089MedApr 1, 2026
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input.…

  • CVE-2026-20088MedApr 1, 2026
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input.…

  • CVE-2026-20087MedApr 1, 2026
    risk 0.31cvss 4.8epss 0.00

    A vulnerability in the web-based management interface of Cisco IMC could allow an authenticated, remote attacker with administrative privileges to conduct a stored XSS attack against a user of the interface. This vulnerability is due to insufficient validation of user input.…

  • CVE-2012-5202Mar 9, 2013
    risk 0.05cvss epss 0.21

    Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to obtain sensitive information, modify data, or cause a denial of service via unknown vectors, aka…

  • CVE-2012-5209Mar 9, 2013
    risk 0.01cvss epss 0.09

    Unspecified vulnerability in HP Intelligent Management Center (iMC) and Intelligent Management Center for Automated Network Manager (ANM) before 5.2 E0401 allows remote attackers to execute arbitrary code via unknown vectors, aka ZDI-CAN-1659.