CVE-2012-4104

Cisco Unified Computing System - Path Traversal and Arbitrary File Write via Fabric-Interconnect Image Header

Title source: llm
STIX 2.1

Description

Absolute path traversal vulnerability in the image-download process in the fabric-interconnect component in Cisco Unified Computing System (UCS) allows local users to overwrite or delete arbitrary files via a full pathname in an image header, aka Bug ID CSCtq02706.

References (1)

Core 1
Core References

Scores

EPSS 0.0035
EPSS Percentile 27.2%

Details

CWE
CWE-22
Status published
Products (1)
cisco/unified_computing_system
Published Oct 02, 2013
Tracked Since Feb 18, 2026