Cisco IMC Command Injection Vulnerability Allowing Remote Code Execution

A command injection vulnerability has been identified in the web-based management interface of Cisco Integrated Management Controller (IMC). This vulnerability allows an authenticated, remote attacker with read-only privileges to execute arbitrary commands on the underlying operating system as the root user. The issue arises from improper validation of user-supplied input, enabling attackers to send crafted commands that are executed with elevated privileges.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the affected system, with the executed commands running as the root user.

Remediation

Cisco has released software updates to address this vulnerability. For Cisco 5000 Series ENCS and Catalyst 8300 Series Edge uCPE, the IMC upgrade is part of the firmware auto-upgrade process. UCS C-Series M5 and M6 Rack Servers can be upgraded to specific fixed releases. For UCS E-Series Servers, similar upgrade paths are available. Instructions for upgrading Cisco IMC on appliances based on a preconfigured version of a Cisco UCS C-Series Server are also provided in the advisory.