CVE-2012-4121 — MEDIUM (6.8)

Vulnerability Description

Cisco NX-OS allows local users to gain privileges, and read or modify arbitrary files, via the sed (1) r and (2) w commands, aka Bug IDs CSCts56559, CSCts56565, CSCts56570, and CSCts56574.

CVSS Score

6.8

MEDIUM

AV:L/AC:L/Au:S/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Cisco	Nx-Os	-

Related Weaknesses (CWE)

CWE-264

References

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4121Vendor Advisory
http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4121Vendor Advisory

FAQ

What is CVE-2012-4121?

CVE-2012-4121 is a vulnerability with a CVSS score of 6.8 (MEDIUM). Cisco NX-OS allows local users to gain privileges, and read or modify arbitrary files, via the sed (1) r and (2) w commands, aka Bug IDs CSCts56559, CSCts56565, CSCts56570, and CSCts56574.

How severe is CVE-2012-4121?

CVE-2012-4121 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2012-4121?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os.