CVE-2012-4078 - OpenCVE

The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication Single

Confidentiality Impact Complete

Integrity Impact Complete

Availability Impact Complete

AV:N/AC:M/Au:S/C:C/I:C/A:C

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Unified Computing System

Configuration 1 [-]

OR	cpe:2.3:a:cisco:unified_computing_system:1.0\(2k\):::::::*
	cpe:2.3:a:cisco:unified_computing_system:1.0_base:::::::*
	cpe:2.3:a:cisco:unified_computing_system:1.1\(1m\):::::::*
	cpe:2.3:a:cisco:unified_computing_system:1.1_base:::::::*

No data.

References

Link	Providers
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078
http://www.securitytracker.com/id/1029084
https://exchange.xforce.ibmcloud.com/vulnerabilities/87367

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2013-09-24T10:00:00

Updated: 2024-08-06T20:28:07.288Z

Reserved: 2012-07-31T00:00:00

Link: CVE-2012-4078

Vulnrichment

No data.

NVD

Status : Modified

Published: 2013-09-24T10:35:51.783

Modified: 2017-08-29T01:32:09.417

Link: CVE-2012-4078

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2013-09-23T00:00:00", "descriptions": [{"lang": "en", "value": "The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-28T12:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20130923 Cisco Unified Computing System Baseboard Management Controller Privilege Escalation Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078"}, {"name": "cisco-ucs-cve20124078-priv-esc(87367)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87367"}, {"name": "1029084", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1029084"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2012-4078", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20130923 Cisco Unified Computing System Baseboard Management Controller Privilege Escalation Vulnerability", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078"}, {"name": "cisco-ucs-cve20124078-priv-esc(87367)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87367"}, {"name": "1029084", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1029084"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T20:28:07.288Z"}, "title": "CVE Program Container", "references": [{"name": "20130923 Cisco Unified Computing System Baseboard Management Controller Privilege Escalation Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078"}, {"name": "cisco-ucs-cve20124078-priv-esc(87367)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87367"}, {"name": "1029084", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1029084"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2012-4078", "datePublished": "2013-09-24T10:00:00", "dateReserved": "2012-07-31T00:00:00", "dateUpdated": "2024-08-06T20:28:07.288Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:unified_computing_system:1.0\\(2k\\):*:*:*:*:*:*:*", "matchCriteriaId": "99A5E1B0-4DC3-41E7-8560-56A94F06283B", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_computing_system:1.0_base:*:*:*:*:*:*:*", "matchCriteriaId": "87D49A41-C6A8-46EB-8128-EAF42B91C113", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_computing_system:1.1\\(1m\\):*:*:*:*:*:*:*", "matchCriteriaId": "B88073EC-8B4F-4B87-9BF3-AEF78676C51E", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:unified_computing_system:1.1_base:*:*:*:*:*:*:*", "matchCriteriaId": "6046C767-4302-4084-B615-058082219507", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656."}, {"lang": "es", "value": "El Baseboard Management Controller (BMC) en Cisco Unified Computing System (UCS) no maneja correctamente secuencias de escape SSH, lo cual permite a usuarios autenticados remotamente saltarse un paso no especificado de autentificaci\u00f3n a trav\u00e9s del reenv\u00edo de puertos SSH, aka Bug ID CSCtg17656."}], "id": "CVE-2012-4078", "lastModified": "2017-08-29T01:32:09.417", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "SINGLE", "availabilityImpact": "COMPLETE", "baseScore": 8.5, "confidentialityImpact": "COMPLETE", "integrityImpact": "COMPLETE", "vectorString": "AV:N/AC:M/Au:S/C:C/I:C/A:C", "version": "2.0"}, "exploitabilityScore": 6.8, "impactScore": 10.0, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2013-09-24T10:35:51.783", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4078"}, {"source": "ykramarz@cisco.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1029084"}, {"source": "ykramarz@cisco.com", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/87367"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-287"}], "source": "nvd@nist.gov", "type": "Primary"}]}