Vulnerability Description
Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCtg20755.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Unified Computing System | - |
Related Weaknesses (CWE)
References
- http://osvdb.org/98125
- http://secunia.com/advisories/55203
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4084Vendor Advisory
- http://www.securityfocus.com/bid/62851Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/87679
- http://osvdb.org/98125
- http://secunia.com/advisories/55203
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4084Vendor Advisory
- http://www.securityfocus.com/bid/62851Third Party AdvisoryVDB Entry
- https://exchange.xforce.ibmcloud.com/vulnerabilities/87679
FAQ
What is CVE-2012-4084?
CVE-2012-4084 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Cross-site request forgery (CSRF) vulnerability in the web-management interface in the fabric interconnect (FI) component in Cisco Unified Computing System (UCS) allows remote attackers to hijack the ...
How severe is CVE-2012-4084?
CVE-2012-4084 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4084?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Computing System.