cvedb.io
CVE-2015-4259
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-07-10T15:59:03.277 · Last modified 2026-06-17T00:27:00.257

Summary

The Integrated Management Controller on Cisco Unified Computing System (UCS) C servers with software 1.5(3) and 1.6(0.16) has a default SSL certificate, which makes it easier for man-in-the-middle attackers to bypass cryptographic protection mechanisms by leveraging knowledge of a private key, aka Bug IDs CSCum56133 and CSCum56177.

Affected products

cisco — unified_computing_system

Does this affect you?

Add your gear to cvedb and we'll alert you only when cisco ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.