CVE-2020-3247
published 2020-04-15CVE-2020-3247: Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication…
PriorityP277critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
75.07%
99.4th percentile
Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Affected
21 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director | — | — |
| cisco | ucs_director_and_cisco_ucs_director_express_for_big_data | — | — |
| cisco | ucs_director_express_for_big_data | <= 3.7.3.0 | — |
Detection & IOCsextracted from sources · hover to see the quote
- →CVE-2020-3247 affects the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data; monitor for unauthenticated or anomalous REST API calls targeting these products ↗
- →CWE-22 (path traversal) and CWE-264 (permissions/privilege bypass) are the relevant weakness classes; look for directory traversal sequences (e.g., ../../../) in REST API request paths targeting UCS Director endpoints ↗
- →Track Cisco Bug IDs CSCvs53493, CSCvs53496, and CSCvs53500 for patch and indicator updates related to this CVE ↗
- ·The advisory covers multiple vulnerabilities under the same advisory identifier; CVE-2020-3247 specifically relates to authentication bypass and directory traversal in the REST API — defenders should ensure all sub-bugs (CSCvs53493, CSCvs53496, CSCvs53500) are patched ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco9.8CRITICAL
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-mcj6-f8p9-qpgc: Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authe
ghsa_unreviewed·2022-05-24
CVE-2020-3247 [HIGH] GHSA-mcj6-f8p9-qpgc: Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authe
Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Cisco
Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data
vendor_cisco·2020-04-15·CVSS 9.8
CVE-2020-3239 [CRITICAL] CWE-20 Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data
Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data
Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device.
For more information about these vulnerabilities, see the Details section of this advisory.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsd-mult-vulns-UNfpdW4E
Cisco
Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data
vendor_cisco·CVSS 3.0
CVE-2020-3247 Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data
CVE-2020-3247: Multiple Vulnerabilities in Cisco UCS Director and Cisco UCS Director Express for Big Data
Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. For more information about these vulnerabilities, see the
CVSS: 3.0
CWE: CWE-20, CWE-22, CWE-264, CWE-20, CWE-22, CWE-264
Bug IDs: CSCvs53493, CSCvs53496, CSCvs53500, CSCvs53493, CSCvs53496
No detection rules found.
No public exploits indexed.
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsd-mult-vulns-UNfpdW4Ehttps://www.zerodayinitiative.com/advisories/ZDI-20-541/https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucsd-mult-vulns-UNfpdW4Ehttps://www.zerodayinitiative.com/advisories/ZDI-20-541/
2020-04-15
Published