Cisco Unified Computing System (UCS) Central Software 1.3(1b) and earlier allows remote attackers to execute arbitrary OS commands via a crafted HTTP request, aka Bug ID CSCuv33856.
References
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 02:46
Type | Values Removed | Values Added |
---|---|---|
References | () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160413-ucs - Vendor Advisory | |
References | () http://www.securitytracker.com/id/1035565 - |
Information
Published : 2016-04-14 01:59
Updated : 2024-11-21 02:46
NVD link : CVE-2016-1352
Mitre link : CVE-2016-1352
CVE.ORG link : CVE-2016-1352
JSON object : View
Products Affected
cisco
- unified_computing_system_central_software
CWE
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')