CVE-2015-0701
published 2015-05-07CVE-2015-0701: Cisco UCS Central Software before 1.3(1a) allows remote attackers to execute arbitrary commands via a crafted HTTP request, aka Bug ID CSCut46961.
PriorityP261critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
4.51%
90.3th percentile
Cisco UCS Central Software before 1.3(1a) allows remote attackers to execute arbitrary commands via a crafted HTTP request, aka Bug ID CSCut46961.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | ucs_central | — | — |
| cisco | unified_computing_system_central_software | — | — |
| cisco | unified_computing_system_central_software | — | — |
| cisco | unified_computing_system_central_software | — | — |
| cisco | unified_computing_system_central_software | — | — |
| cisco | unified_computing_system_central_software | — | — |
| cisco | unified_computing_system_central_software | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect unauthenticated crafted HTTP requests targeting Cisco UCS Central Software web framework, which may indicate exploitation of improper input validation leading to OS command execution as root. ↗
- ·Vulnerability affects Cisco UCS Central Software versions prior to 1.3(1a). No workarounds are available; patching to 1.3(1a) or later is the only mitigation. ↗
- ·Workarounds that mitigate this vulnerability are not available; only software updates address this issue. ↗
CVSS provenance
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco10.0CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco UCS Central Software Arbitrary Command Execution Vulnerability
vendor_cisco·2015-05-06·CVSS 10.0
CVE-2015-0701 [CRITICAL] CWE-78 Cisco UCS Central Software Arbitrary Command Execution Vulnerability
Cisco UCS Central Software Arbitrary Command Execution Vulnerability
A vulnerability in the web framework of Cisco UCS Central Software could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device.
The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. An exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the root user.
Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cis
Cisco
Cisco UCS Central Software Arbitrary Command Execution Vulnerability
vendor_cisco
CVE-2015-0701 Cisco UCS Central Software Arbitrary Command Execution Vulnerability
CVE-2015-0701: Cisco UCS Central Software Arbitrary Command Execution Vulnerability
A vulnerability in the web framework of Cisco UCS Central Software could allow an unauthenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to improper input validation. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. An exploit could allow the attacker to execute arbitrary commands on the underlying operating system with the privileges of the root user. Cisco has released software updates that address this vulnerability.
CWE: CWE-78, CWE-78
Bug IDs: CSCut46961, CSCut46961
GHSA
GHSA-m3mc-f693-5x5j: Cisco UCS Central Software before 1
ghsa_unreviewed·2022-05-17
CVE-2015-0701 [HIGH] CWE-20 GHSA-m3mc-f693-5x5j: Cisco UCS Central Software before 1
Cisco UCS Central Software before 1.3(1a) allows remote attackers to execute arbitrary commands via a crafted HTTP request, aka Bug ID CSCut46961.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150506-ucschttp://www.securityfocus.com/bid/74491http://www.securitytracker.com/id/1032267http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150506-ucschttp://www.securityfocus.com/bid/74491http://www.securitytracker.com/id/1032267
2015-05-07
Published