exploitDog

CVE-2012-4141

Опубликовано: 05 окт. 2013

Источник: nvd

CVSS2: 6.2

EPSS Низкий

Описание

Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and CSCua71551.

Ссылки

http://osvdb.org/98122
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4141
Vendor Advisory
http://www.securityfocus.com/bid/62839
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029160
Third Party Advisory
VDB Entry
http://osvdb.org/98122
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4141
Vendor Advisory
http://www.securityfocus.com/bid/62839
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1029160
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:o:cisco:nx-os:-:*:*:*:*:*:*:*

EPSS

Процентиль: 37%

0.00161

Низкий

6.2 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-wm5x-2c4m-hg2v

github

больше 3 лет назад

Directory traversal vulnerability in the CLI parser in Cisco NX-OS allows local users to create arbitrary script files via a relative pathname in the "file name" parameter, aka Bug IDs CSCua71557 and CSCua71551.

EPSS

Процентиль: 37%

0.00161

Низкий

6.2 Medium

CVSS2

Дефекты

CWE-264