Vulnerability Description
The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an unspecified user account, which makes it easier for remote attackers to read or modify files by leveraging knowledge of this password, aka Bug ID CSCtg20769.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Unified Computing System | - |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/54682
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4088Vendor Advisory
- http://www.securitytracker.com/id/1029102Third Party AdvisoryVDB Entry
- http://secunia.com/advisories/54682
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4088Vendor Advisory
- http://www.securitytracker.com/id/1029102Third Party AdvisoryVDB Entry
FAQ
What is CVE-2012-4088?
CVE-2012-4088 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The FTP server in Cisco Unified Computing System (UCS) has a hardcoded password for an unspecified user account, which makes it easier for remote attackers to read or modify files by leveraging knowle...
How severe is CVE-2012-4088?
CVE-2012-4088 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4088?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Unified Computing System.