The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attackers to read or modify an inter-device data stream by spoofing an identity, aka Bug ID CSCtk00683.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2013-09-26T10:00:00

Updated: 2024-08-06T20:28:07.147Z

Reserved: 2012-07-31T00:00:00

Link: CVE-2012-4092

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Analyzed

Published: 2013-09-26T14:16:22.047

Modified: 2016-09-22T14:26:37.620

Link: CVE-2012-4092

cve-icon Redhat

No data.