CVE-2015-6415 — Cisco Unified Computing System vulnerability

CWE-3994 documents4 sources

Severity

7.1HIGHNVD

EPSS

0.6%

top 31.60%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Unified Computing System

Timeline

PublishedDec 12

Latest updateMay 14

Description

Cisco Unified Computing System (UCS) 2.2(3f)A on Fabric Interconnect 6200 devices allows remote attackers to cause a denial of service (CPU consumption or device outage) via a SYN flood on the SSH port during the booting process, aka Bug ID CSCuu81757.

CVSS vector

AV:N/AC:M/C:N/I:N/A:CExploitability: 8.6 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/unified_computing_system2.2\(3f\)a

🔴Vulnerability Details

GHSA

GHSA-fx57-x4vq-rqxv: Cisco Unified Computing System (UCS) 2↗2022-05-14

▶

CVEList

CVE-2015-6415: Cisco Unified Computing System (UCS) 2↗2015-12-12

▶

📋Vendor Advisories

Cisco

Cisco Unified Computing System 6200 Series Fabric Interconnect Series Switch DoS Vulnerability↗2015-12-10

▶