Hardcoded X.509 Certificate Vulnerability in Cisco Unified Computing System (UCS)

Hardcoded X.509 Certificate Vulnerability in Cisco Unified Computing System (UCS)

CVE-2012-4072 · MEDIUM Severity

AV:N/AC:M/AU:N/C:P/I:N/A:N

The KVM subsystem in Cisco Unified Computing System (UCS) relies on a hardcoded X.509 certificate, which allows man-in-the-middle attackers to spoof SSL servers, and read keyboard and mouse events, by leveraging knowledge of this certificate's private key, aka Bug ID CSCte90327.

Learn more about our Cis Benchmark Audit For Cisco.