Vulnerabilities > Cisco > UCS Director Express FOR BIG Data > 2.1.0.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-05-06 | CVE-2020-3329 | Unspecified vulnerability in Cisco products A vulnerability in role-based access control of Cisco Integrated Management Controller (IMC) Supervisor, Cisco UCS Director, and Cisco UCS Director Express for Big Data could allow a read-only authenticated, remote attacker to disable user accounts on an affected system. | 4.0 |
| 2020-04-15 | CVE-2020-3252 | Path Traversal vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 4.0 |
| 2020-04-15 | CVE-2020-3251 | Path Traversal vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 9.0 |
| 2020-04-15 | CVE-2020-3250 | Improper Privilege Management vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 7.5 |
| 2020-04-15 | CVE-2020-3249 | Path Traversal vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 7.8 |
| 2020-04-15 | CVE-2020-3248 | Path Traversal vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 10.0 |
| 2020-04-15 | CVE-2020-3247 | Path Traversal vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 10.0 |
| 2020-04-15 | CVE-2020-3243 | Improper Privilege Management vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 7.5 |
| 2020-04-15 | CVE-2020-3240 | Improper Input Validation vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 8.5 |
| 2020-04-15 | CVE-2020-3239 | Path Traversal vulnerability in Cisco UCS Director and UCS Director Express FOR BIG Data Multiple vulnerabilities in the REST API of Cisco UCS Director and Cisco UCS Director Express for Big Data may allow a remote attacker to bypass authentication or conduct directory traversal attacks on an affected device. | 9.0 |