CVE-2012-4078

high Cisco
CVSS v3 Base Score
8.5
AV:N/AC:M/Au:S/C:C/I:C/A:C
EPSS Score
0.9%
Exploitation probability in 30 days
Top 24% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
M
Confidentiality
C
Integrity
C
Availability
C
Published: September 24, 2013 (4615 days ago)
Last Modified: April 29, 2026
Vendor: Cisco
Source: NVD

Description

The Baseboard Management Controller (BMC) in Cisco Unified Computing System (UCS) does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656.

CWE

CWE-287

Affected Products

cisco unified computing system

References

🔗 tools.cisco.com 🔗 www.securitytracker.com 🔗 exchange.xforce.ibmcloud.com 🔗 tools.cisco.com 🔗 www.securitytracker.com