cbcvebase.
CVE-2012-10024
published 2025-08-05

CVE-2012-10024: XBMC version 11.0 contains a path traversal vulnerability in its embedded HTTP server. When accessed via HTTP Basic Authentication, the server fails to…

PriorityP349high7.1CVSS 4.0
AVNACLATNPRLUINVCHVINVANSCNSINSANEXCRXIRXARXMAVXMACXMATXMPRXMUIXMVCXMVIXMVAXMSCXMSIXMSAXSXAUXRXVXREXUX
EXPLOIT
EPSS
1.06%
60.3th percentile
XBMC version 11.0 contains a path traversal vulnerability in its embedded HTTP server. When accessed via HTTP Basic Authentication, the server fails to properly sanitize URI input, allowing authenticated users to request files outside the intended document root. An attacker can exploit this flaw to read arbitrary files from the host filesystem, including sensitive configuration or credential files.

Affected

1 ranges
VendorProductVersion rangeFixed in
xbmcmedia_center<= 11.0

Detection & IOCsextracted from sources · hover to see the quote

urlhttps://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/gather/xbmc_traversal.rb
  • Monitor HTTP requests to XBMC's embedded HTTP server containing path traversal sequences (e.g., '../') in the URI, which may indicate exploitation attempts to read files outside the document root.
  • Alert on HTTP Basic Authentication attempts to XBMC's HTTP server followed by URI requests containing directory traversal patterns, as exploitation requires authentication.
  • Flag file retrieval attempts via XBMC HTTP server targeting sensitive files (e.g., credential or configuration files) using traversal paths, as the module is limited to file retrieval.
  • ·Exploitation requires valid HTTP Basic Authentication credentials; unauthenticated attackers cannot directly exploit this traversal vulnerability.
  • ·The vulnerability affects only XBMC version 11 up to and including the 2012-11-04 nightly build; later builds are not confirmed vulnerable.
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.