The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attackers to read or modify an inter-device data stream by spoofing an identity, aka Bug ID CSCtk00683.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2013-09-26T10:00:00
Updated: 2024-08-06T20:28:07.147Z
Reserved: 2012-07-31T00:00:00
Link: CVE-2012-4092
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2013-09-26T14:16:22.047
Modified: 2016-09-22T14:26:37.620
Link: CVE-2012-4092
Redhat
No data.