CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6604

A vulnerability in the web interface of Cisco Integrated Management Controller (IMC) Software could allow an unauthenticated, remote attacker to redirect a user to a malicious web page. This vulnerability affects the following Cisco products running Cisco IMC Software: Unified Computing System (UCS) B-Series M3 and M4 Blade Servers, Unified Computing System (UCS) C-Series M3 and M4 Rack Servers. More Information: CSCvc37931. Known Affected Releases: 3.1(2c)B.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 48.7%

CVSS Severity

CVSS v3 Score 6.1

CVSS v2 Score 5.8

References

Products affected by CVE-2017-6604

Cisco » Unified Computing System » Version: 2.2(8b)

cpe:2.3:a:cisco:unified_computing_system:2.2(8b)
Cisco » Unified Computing System » Version: 3.0(1c)

cpe:2.3:a:cisco:unified_computing_system:3.0(1c)
Cisco » Unified Computing System » Version: 3.1(2c)b

cpe:2.3:a:cisco:unified_computing_system:3.1(2c)b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6604

Products

Pricing

Contact Us