CVE-2012-4135Path Traversal in Cisco Nx-os

CWE-22Path Traversal4 documents4 sources
Severity
4.6MEDIUMNVD
EPSS
0.1%
top 77.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Nx-os
Timeline
PublishedDec 21
Latest updateMay 17

Description

Directory traversal vulnerability in filesys in Cisco NX-OS 6.1(2) and earlier allows local users to access arbitrary files via crafted command-line arguments during a delete action, aka Bug IDs CSCty07270, CSCty07271, CSCty07273, and CSCty07275.

CVSS vector

AV:L/AC:L/C:N/I:C/A:NExploitability: 3.1 | Impact: 6.9

Affected Packages1 packages

NVDcisco/nx-os6.1\(2\)+97

🔴Vulnerability Details

2
GHSA
GHSA-3wjp-mcmp-h4xw: Directory traversal vulnerability in filesys in Cisco NX-OS 62022-05-17
CVEList
CVE-2012-4135: Directory traversal vulnerability in filesys in Cisco NX-OS 62013-12-21

📋Vendor Advisories

1
Cisco
Cisco NX-OS Directory Traversal Vulnerability2013-12-19
CVE-2012-4135 — Path Traversal in Cisco Nx-os | cvebase