Cisco Integrated Management Controller Authentication Bypass Vulnerability — CISCO-SA-CIMC-AUTH-BYPASS-AGG2BXTN
Cisco · Cisco · CISCO-SA-CIMC-AUTH-BYPASS-AGG2BXTN
ID
CISCO-SA-CIMC-AUTH-BYPASS-AGG2BXTN
CISCO-SA-CIMC-AUTH-BYPASS-AGG2BXTN
Datum
Activity
Quelle
Cisco
Cisco
Vendor
Cisco
Cisco
Risiko
critical
critical
Zusammenfassung
A vulnerability in the change password functionality of Cisco Integrated Management Controller (IMC) could allow an unauthenticated, remote attacker to bypass authentication and gain access to the system as Admin . This vulnerability is due to incorrect handling of password change requests. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful…
Produkt
Cisco Integrated Management Controller Authentication Bypass
Was tun?
Allgemeine, vorsichtige Schritte (bitte prüfe die offizielle Quelle für Details):
- Priorisiere sofort Patches oder Mitigations (hohes akutes Risiko).
- Identifiziere betroffene Produktversionen und prüfe, ob du betroffen bist.
- Spiele Hersteller-Updates/Patches ein oder setze empfohlene Mitigations um.
- Lies das offizielle Advisory für betroffene Versionen und konkrete Schritte.