Search

Find a vulnerability

Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

    1 vulnerability found for Intersight Server by Cisco

    CERTFR-2025-AVI-0737

    Vulnerability from certfr_avis - Published: - Updated:

    De multiples vulnérabilités ont été découvertes dans les produits Cisco. Elles permettent à un attaquant de provoquer un déni de service à distance et un contournement de la politique de sécurité.

    Solutions

    Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

    Impacted products
    Vendor Product Description
    Cisco NFVIS NFVIS versions antérieures à 4.18.1
    Cisco UCS UCS Server versions antérieures à 4.15.2 sur UCS séries E
    Cisco UCS UCS Server versions 4.3 antérieures à 4.3(5.250001) sur UCS séries C
    Cisco UCS UCS Server versions antérieures à 4.2(3o) sur UCS séries B, C et X
    Cisco Intersight Server Intersight Server versions 5.0 antérieures à 5.0(4i) sur UCS séries X
    Cisco Intersight Server Intersight Server versions 5.x antérieures à 5.3(0.250001) sur UCS séries B et X
    Cisco Intersight Server Intersight Server versions antérieures à 4.2(3l) sur UCS séries B
    Cisco UCS UCS Server versions 4.3 antérieures à 4.3(5c) sur UCS séries B, C et X
    Cisco UCS UCS Manager versions 4.3 antérieures à 4.3(6a)
    Cisco UCS UCS Manager Software versions antérieures à 4.2(3p)
    Cisco commutateurs Nexus les commutateurs Nexus séries 3000 et 9000, se référer au bulletin de sécurité de l'éditeur pour les systèmes affectés (cf. section Documentation)
    References

    Show details on source website

    {
      "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
      "affected_systems": [
        {
          "description": "NFVIS versions ant\u00e9rieures \u00e0 4.18.1",
          "product": {
            "name": "NFVIS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "UCS Server versions ant\u00e9rieures \u00e0 4.15.2 sur UCS s\u00e9ries E",
          "product": {
            "name": "UCS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "UCS Server versions 4.3 ant\u00e9rieures \u00e0 4.3(5.250001) sur UCS s\u00e9ries C",
          "product": {
            "name": "UCS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "UCS Server versions ant\u00e9rieures \u00e0 4.2(3o) sur UCS s\u00e9ries B, C et X",
          "product": {
            "name": "UCS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "Intersight Server versions 5.0 ant\u00e9rieures \u00e0 5.0(4i) sur UCS s\u00e9ries X",
          "product": {
            "name": "Intersight Server",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "Intersight Server versions 5.x ant\u00e9rieures \u00e0 5.3(0.250001) sur UCS s\u00e9ries B et X",
          "product": {
            "name": "Intersight Server",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "Intersight Server versions ant\u00e9rieures \u00e0 4.2(3l) sur UCS s\u00e9ries B",
          "product": {
            "name": "Intersight Server",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "UCS Server versions 4.3 ant\u00e9rieures \u00e0 4.3(5c) sur UCS s\u00e9ries B, C et X",
          "product": {
            "name": "UCS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "UCS Manager versions 4.3 ant\u00e9rieures \u00e0 4.3(6a)",
          "product": {
            "name": "UCS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "UCS Manager Software versions ant\u00e9rieures \u00e0 4.2(3p)",
          "product": {
            "name": "UCS",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        },
        {
          "description": "les commutateurs Nexus s\u00e9ries 3000 et 9000, se r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour les syst\u00e8mes affect\u00e9s (cf. section Documentation)",
          "product": {
            "name": "commutateurs Nexus",
            "vendor": {
              "name": "Cisco",
              "scada": false
            }
          }
        }
      ],
      "affected_systems_content": "",
      "content": "## Solutions\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des correctifs (cf. section Documentation).",
      "cves": [
        {
          "name": "CVE-2025-20317",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-20317"
        },
        {
          "name": "CVE-2025-20241",
          "url": "https://www.cve.org/CVERecord?id=CVE-2025-20241"
        }
      ],
      "links": [],
      "reference": "CERTFR-2025-AVI-0737",
      "revisions": [
        {
          "description": "Version initiale",
          "revision_date": "2025-08-28T00:00:00.000000"
        }
      ],
      "risks": [
        {
          "description": "D\u00e9ni de service \u00e0 distance"
        },
        {
          "description": "Contournement de la politique de s\u00e9curit\u00e9"
        }
      ],
      "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Cisco. Elles permettent \u00e0 un attaquant de provoquer un d\u00e9ni de service \u00e0 distance et un contournement de la politique de s\u00e9curit\u00e9.",
      "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
      "vendor_advisories": [
        {
          "published_at": "2025-08-27",
          "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-ucs-vkvmorv-CnKrV7HK",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ucs-vkvmorv-CnKrV7HK"
        },
        {
          "published_at": "2025-08-27",
          "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-n39k-isis-dos-JhJA8Rfx",
          "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-n39k-isis-dos-JhJA8Rfx"
        }
      ]
    }