Back to search
CVE-2012-4092
Published: Sep 26, 2013
Modified: Aug 6, 2024
PUBLISHED
Description
The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attackers to read or modify an inter-device data stream by spoofing an identity, aka Bug ID CSCtk00683.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
55034
third-party-advisory
x_refsource_SECUNIA
20130925 Cisco Unified Computing System Fabric System Manager Man-in-the-Middle Vulnerability
vendor-advisory
x_refsource_CISCO
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now