Lucene search
HistoryFeb 15, 2013 - 12:09 p.m.
CVE-2012-4701
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.1 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
78.4%
Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently execute arbitrary code, by leveraging (1) valid credentials or (2) the guest feature.
Affected configurations
Node
tridiumniagara_axMatch3.5
ORtridiumniagara_axMatch3.6
ORtridiumniagara_axMatch3.7
Related
cve
cve
CVE-2012-4701
2022-10-03 16:15:33
nessus
nessus
Tridium Niagra Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
2020-08-10 00:00:00
Tridium Niagara AX Path Traversal (CVE-2012-4701)
2023-03-21 00:00:00
cvelist
cvelist
CVE-2012-4701
2022-10-03 16:15:33
prion
prion
Directory traversal
2013-02-15 12:09:00
ics
ics
Tridium NiagaraAX Directory Traversal Vulnerability
2013-05-08 12:00:00
9.3 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
7.1 High
AI Score
Confidence
Low
0.006 Low
EPSS
Percentile
78.4%
Related for NVD:CVE-2012-4701