VIR Vulnerability Intelligence Relay

CVE-2015-0633

medium
Published 2015-02-26 · Modified 2026-05-06
CVSS v3
CVSS v2
6.8
VIR risk
6.8

Description

The Integrated Management Controller (IMC) in Cisco Unified Computing System (UCS) 1.4(7h) and earlier on C-Series servers allows remote attackers to bypass intended access restrictions by sending crafted DHCP response packets on the local network, aka Bug ID CSCuf52876.

Predictions

Exploit likelihood
20%
Patch ETA

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: psirt@cisco.com — http://tools.cisco.com/security/center/viewAlert.x?alertId=37575

vendor Authored 2026-05-27

Vendor advisory: psirt@cisco.com — http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2015-0633

Application impact
VendorProductVersionsFixed
cisco ciscounified_computing_system1.4
cisco ciscounified_computing_system1.4\(1c\)
cisco ciscounified_computing_system1.4\(2\)
cisco ciscounified_computing_system1.4\(3c\)1
cisco ciscounified_computing_system1.4\(3c\)2
cisco ciscounified_computing_system1.4\(3j\)
cisco ciscounified_computing_system1.4\(3k\)
cisco ciscounified_computing_system1.4\(3p\)
cisco ciscounified_computing_system1.4\(3p\)5
cisco ciscounified_computing_system1.4\(3s\)
cisco ciscounified_computing_system1.4\(4a\)
cisco ciscounified_computing_system1.4\(4a\)1
cisco ciscounified_computing_system1.4\(5b\)1
cisco ciscounified_computing_system1.4\(5e\)
cisco ciscounified_computing_system1.4\(5g\)
cisco ciscounified_computing_system1.4\(5g\)2
cisco ciscounified_computing_system1.4\(5h\)
cisco ciscounified_computing_system1.4\(5j\)
cisco ciscounified_computing_system1.4\(6c\)
cisco ciscounified_computing_system1.4\(6d\)
cisco ciscounified_computing_system1.4\(7b\)1
cisco ciscounified_computing_system1.4\(7c\)1
cisco ciscounified_computing_system1.4\(7h\)

References

CWEs

CWE-20

Verify integrity in audit chain (admin only). AS-IS.