CVE-2012-4092

CVE Database · CVE-2012-4092

CVE-2012-4092

· N/AModified

CVSS v3.1

N/A

EPSS

0.84%

Published

Sep 26, 2013

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The management interface in the Central Software component in Cisco Unified Computing System (UCS) does not properly validate the identity of vCenter consoles, which allows man-in-the-middle attackers to read or modify an inter-device data stream by spoofing an identity, aka Bug ID CSCtk00683.

Weaknesses (CWE)

CWE-20

Affected Products (1)

cisco · unified_computing_systemvulnerable

References (4)

http://secunia.com/advisories/55034

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4092

Vendor Advisory

http://secunia.com/advisories/55034

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4092

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs