ID
VAR-201511-0010
CVE
CVE-2015-6355
TITLE
Operates on the blade server Cisco Unified Computing System of Web Vulnerability in which important version information is obtained in the interface
Trust: 0.8
DESCRIPTION
The web interface in Cisco Unified Computing System (UCS) 2.2(5b)A on blade servers allows remote attackers to obtain potentially sensitive version information by visiting an unspecified URL, aka Bug ID CSCuw87226. Vendors have confirmed this vulnerability Bug ID CSCuw87226 It is released as.Unspecified by a third party URL By accessing, important version information may be obtained. Cisco Unified Computing System is prone to a remote information-disclosure vulnerability. Successful exploits may allow an attacker to obtain sensitive information that may lead to further attacks. This issue is tracked by Cisco Bug ID CSCuw87226. The system integrates network, computing and virtualization resources into one platform by extensively adopting virtualization technology. A security vulnerability exists in Cisco UCS Release 2.2(5b)A on Blade Server
Trust: 1.98
AFFECTED PRODUCTS
| vendor: | cisco | model: | unified computing system | scope: | eq | version: | 2.2\(5b\)a | Trust: 1.6 |
| vendor: | cisco | model: | unified computing system software | scope: | eq | version: | 2.2(5b)a | Trust: 0.8 |
| vendor: | cisco | model: | unified computing system 2.2 a | scope: | - | version: | - | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-200 | Trust: 1.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
information disclosure
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | cisco-sa-20151102-ucs | url: | http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151102-ucs | Trust: 0.8 |
| title: | cisco-sa-20151102-ucs | url: | http://www.cisco.com/cisco/web/support/JP/113/1136/1136187_cisco-sa-20151102-ucs-j.html | Trust: 0.8 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2015-6355 | Trust: 2.8 |
| db: | SECTRACK | id: | 1034042 | Trust: 1.1 |
| db: | BID | id: | 77401 | Trust: 1.0 |
| db: | JVNDB | id: | JVNDB-2015-005732 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201511-031 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-84316 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20151102-ucs | Trust: 2.0 |
| url: | http://www.securitytracker.com/id/1034042 | Trust: 1.1 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6355 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6355 | Trust: 0.8 |
| url: | http://www.securityfocus.com/bid/77401 | Trust: 0.6 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.9
SOURCES
| db: | VULHUB | id: | VHN-84316 |
| db: | BID | id: | 77401 |
| db: | JVNDB | id: | JVNDB-2015-005732 |
| db: | CNNVD | id: | CNNVD-201511-031 |
| db: | NVD | id: | CVE-2015-6355 |
LAST UPDATE DATE
2024-11-23T21:54:48.562000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-84316 | date: | 2018-10-30T00:00:00 |
| db: | BID | id: | 77401 | date: | 2015-11-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-005732 | date: | 2015-11-05T00:00:00 |
| db: | CNNVD | id: | CNNVD-201511-031 | date: | 2015-11-05T00:00:00 |
| db: | NVD | id: | CVE-2015-6355 | date: | 2024-11-21T02:34:50.593 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-84316 | date: | 2015-11-04T00:00:00 |
| db: | BID | id: | 77401 | date: | 2015-11-02T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-005732 | date: | 2015-11-05T00:00:00 |
| db: | CNNVD | id: | CNNVD-201511-031 | date: | 2015-11-04T00:00:00 |
| db: | NVD | id: | CVE-2015-6355 | date: | 2015-11-04T03:59:09.340 |