Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers, and read keyboard and mouse events, by leveraging knowledge of this certificate's private key, aka Bug ID CSCte90327.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Cisco Unified Computing System KVM子系统加密问题漏洞
Vulnerability Description
Cisco Unified Computing System(UCS)是美国思科(Cisco)公司的一套统一计算系统。该系统通过大量采用虚拟化技术将网络、计算和虚拟化资源集成到一个平台上。 Cisco UCS中的KVM子系统中存在加密问题漏洞。该漏洞源于程序使用硬编码的X.509证书。中间人攻击者可通过拦截KVM连接利用该漏洞欺骗SSL服务器,并读取键盘和鼠标事件。
CVSS Information
N/A
Vulnerability Type
N/A