Vulnerability Description
Directory traversal vulnerability in tar in Cisco NX-OS allows local users to access arbitrary files via crafted command-line arguments, aka Bug IDs CSCty07157, CSCty07159, CSCty07162, and CSCty07164.
CVSS Score
4.6
MEDIUM
AV:L/AC:L/Au:S/C:C/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Nx-Os | - |
Related Weaknesses (CWE)
References
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4131Vendor Advisory
- http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-4131Vendor Advisory
FAQ
What is CVE-2012-4131?
CVE-2012-4131 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Directory traversal vulnerability in tar in Cisco NX-OS allows local users to access arbitrary files via crafted command-line arguments, aka Bug IDs CSCty07157, CSCty07159, CSCty07162, and CSCty07164.
How severe is CVE-2012-4131?
CVE-2012-4131 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2012-4131?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Nx-Os.