CVE-2016-1352

Cisco Unified Computing System (UCS) Central Software 1.3(1b) and earlier allows remote attackers to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuv33856.
Configurations

Configuration 1 (hide)

cpe:2.3:a:cisco:unified_computing_system_central_software:1.3\(0.1\):*:*:*:*:*:*:*

History

21 Nov 2024, 02:46

Type Values Removed Values Added
References () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160413-ucs - Vendor Advisory () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160413-ucs - Vendor Advisory
References () http://www.securitytracker.com/id/1035565 - () http://www.securitytracker.com/id/1035565 -

Information

Published : 2016-04-14 01:59

Updated : 2024-11-21 02:46


NVD link : CVE-2016-1352

Mitre link : CVE-2016-1352

CVE.ORG link : CVE-2016-1352


JSON object : View

Products Affected

cisco

  • unified_computing_system_central_software
CWE
CWE-78

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')