Unrated severityNVD Advisory· Published Feb 15, 2013· Updated Jun 16, 2026
CVE-2012-4701
CVE-2012-4701
Description
Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently execute arbitrary code, by leveraging (1) valid credentials or (2) the guest feature.
Affected products
4cpe:2.3:a:tridium:niagara_ax:3.5:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:tridium:niagara_ax:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:tridium:niagara_ax:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:tridium:niagara_ax:3.7:*:*:*:*:*:*:*
- (no CPE)range: 3.5, 3.6, 3.7
Patches
Vulnerability mechanics
References
2- ics-cert.us-cert.gov/pdf/ICSA-13-045-01.pdfnvdBroken LinkThird Party AdvisoryUS Government Resource
- www.niagara-central.com/ordnvdBroken Link
News mentions
0No linked articles in our index yet.