CVE-2012-4104

Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706.

Severity	MEDIUM
CVSS	6.6
CWE	CWE-22
KEV
Published	12 years ago
Modified	2 weeks ago

Related Products

Product	Advisory
Cisco Nexus Dashboard	Cisco-SA-20131001-CVE-2012-4104
Cisco Application Centric Infrastructure Virtual Edge	Cisco-SA-20131001-CVE-2012-4104
Cisco Unified Computing System (Managed)	Cisco-SA-20131001-CVE-2012-4104