Vulnerability Summary: A vulnerability in BIOS authentication management of Cisco 5000 Series Enterprise Network Compute System and Cisco UCS E-Series Servers could allow an unauthenticated, local attacker to bypass the BIOS authentication and execute actions as an unprivileged user. Affected Products: Cisco 5000 Series Enterprise Network Compute System and Cisco UCS E-Series Servers. CVSS Score: Base 4.3 CVE ID: CVE-2018-0362 Cisco Bug IDs: CSCvh83260 Workarounds: Administrators can change the default, user-level BIOS password to a desired string. Fixed Software: For information about fixed software releases, consult the Cisco bug ID(s) at the top of this advisory. Exploitation and Public Announcements: The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability.