VYPR
Unrated severityNVD Advisory· Published Feb 15, 2013· Updated Jun 16, 2026

CVE-2012-4701

CVE-2012-4701

Description

Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently execute arbitrary code, by leveraging (1) valid credentials or (2) the guest feature.

Affected products

4
  • cpe:2.3:a:tridium:niagara_ax:3.5:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:tridium:niagara_ax:3.5:*:*:*:*:*:*:*
    • cpe:2.3:a:tridium:niagara_ax:3.6:*:*:*:*:*:*:*
    • cpe:2.3:a:tridium:niagara_ax:3.7:*:*:*:*:*:*:*
    • (no CPE)range: 3.5, 3.6, 3.7

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.