exploitDog

CVE-2012-4104

Опубликовано: 02 окт. 2013

Источник: nvd

CVSS2: 6.6

EPSS Низкий

Описание

Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706.

Ссылки

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4104
Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4104
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:h:cisco:unified_computing_system:-:*:*:*:*:*:*:*

EPSS

Процентиль: 18%

0.00058

Низкий

6.6 Medium

CVSS2

Дефекты

CWE-22

Связанные уязвимости

GHSA-c9g4-vpc7-w9mh

github

больше 3 лет назад

Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706.

EPSS

Процентиль: 18%

0.00058

Низкий

6.6 Medium

CVSS2

Дефекты

CWE-22