Cisco UCS Central Software - Critical Vulnerability Advisory

Affected ProductCisco UCS Central Software versions 1.2 and earlier

If you are currently running Cisco UCS Central Software you should update the software immediately.

Cisco has announced a critical vulnerability in its UCS Central Software product.  The UCS Central Software is a web application framework that can be used to manage a Cisco UCS domain.  If successfully exploited, an unauthenticated remote user could execute arbitrary commands with the privileges of the root user on the vulnerable system.

This vulnerability has been given an initial CVSS score of 10, which represents the highest severity ranking.  CVSS, the Common Vulnerability Scoring System, is an industry standard mechanism used to assess the severity of computer security vulnerabilities. More information about the CVSS system can be found at https://www.first.org/cvss/faq.

At the time of this writing, there is no known publicly available exploit code.

Next Steps

• Customers running version 1.2 or earlier of the UCS Central Software should upgrade to version 1.3(1a) which was released by Cisco on May 6, 2015.  The direct download link is https://software.cisco.com/download/release.html?mdfid=284308174&release=1.3%281a%29&relind=AVAILABLE&i=rm&softwareid=284308194&rellifecycle=&reltype=latest
• NWG will monitor Managed Services customers’ networks and will enable IPS signatures for this vulnerability when they become available.
• As details regarding this vulnerability emerge, NWG will also offer Vulnerability Management customers proactive scanning to determine if they are affected by this issue.

Links

• Cisco Security Advisoryhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150506-ucsc
• CVE Detailshttps://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0701
• UCS Central Software patched version 1.3(1a)https://software.cisco.com/download/release.html?mdfid=284308174&release=1.3%281a%29&relind=AVAILABLE&i=rm&softwareid=284308194&rellifecycle=&reltype=latest
• NetWorks Group updates regarding this vulnerabilityhttps://www.networksgroup.com/blog

If you have questions regarding this notice please call us at 734-827-1400, option 3 or email support@networksgroup.com.

Topics: Device Management, Information Security, Threat Advisory