Security News

Cybersecurity news aggregator

🌐
CRITICAL Vulnerabilities BSI Germany

[NEU] [hoch] Cisco Integrated Management Controller: Mehrere Schwachstellen

cve-2026-1234ciscomanagement-controllermitre-ta0001mitre-ta0004
Multiple critical vulnerabilities in Cisco Integrated Management Controller (IMC) allow a remote attacker to gain administrator privileges, execute arbitrary code with root rights, or perform cross-site scripting attacks. The CVSS base score for these vulnerabilities is 9.8 (Critical). Affected systems include UCS C-Series M5 rack servers with IMC versions prior to 4.3(2.260007), UCS C-Series M6 rack servers with IMC versions prior to 6.0(1.250174) or 6.0(2.260044), UCS E-Series M3 with IMC prior to 3.2.17, and several other listed platforms with specific unpatched versions.
Read Full Article →

[WID-SEC-2026-0953] Cisco Integrated Management Controller: Mehrere Schwachstellen CVSS Base Score 9.8 (kritisch) CVSS Temporal Score 8.5 (hoch) Remoteangriff ja Datum 01.04.2026 Stand 02.04.2026 Mitigation ja Betroffene Systeme Betriebssystem CISCO Appliance Hardware Appliance Produktbeschreibung Der Cisco Integrated Management Controller ist eine Serververwaltung für mehrere Cisco-Produkte. Produkte 01.04.2026 Cisco Integrated Management Controller UCS C-Series M5 Rack ServerIMC <4.3(2.260007) Cisco Integrated Management Controller UCS C-Series M6 Rack Server IMC <4.3(2.260007) Cisco Integrated Management Controller UCS C-Series M6 Rack Server IMC <6.0(1.250174) Cisco Integrated Management Controller UCS E-Series M3 IMC <3.2.17 Cisco Integrated Management Controller UCS E-Series M6 IMC <4.15.3 Cisco Integrated Management Controller Hardware Platform Cisco Integrated Management Controller 5000 Series ENCS NFVIS <4.15.5 Cisco Integrated Management Controller Catalyst 8300 Series Edge uCPE NFVIS <4.18.3 Cisco Integrated Management Controller UCS C-Series M6 Rack Server IMC <6.0(2.260044) Cisco Integrated Management Controller UCS S-Series Storage Server IMC <4.3(6.260017) Angriff Angriff Ein Angreifer kann mehrere Schwachstellen in Cisco Integrated Management Controller ausnutzen, um Administratorrechte zu erlangen, beliebigen Code mit Root-Rechten auszuführen oder Cross-Site-Scripting-Angriffe durchzuführen. CVE Informationen Versionshistorie Feedback zum Advisory geben

Related Articles

CRITICAL Critical Cisco Catalyst Vulnerability Exploited in the wild (CVE-2026-20127) Rapid7 Research CRITICAL Governments issue warning over Cisco zero-day attacks dating back to 2023 CyberScoop CRITICAL Cisco SD-WAN Zero-Day CVE-2026-20127 Exploited Since 2023 for Admin Access The Hacker News CRITICAL Ransomware gang exploits Cisco flaw in zero-day attacks since January BleepingComputer
Read Full Article → ← Back to News

Share this article

Twitter Facebook LinkedIn