CVE-2012-4616

2022-10-0316:15:32

CWE-22

[email protected]

web.nvd.nist.gov

cve-2012-4616

directory traversal

emc data protection advisor

dpa

nvd

security vulnerability

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.8 Medium

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

65.1%

JSON

Directory traversal vulnerability in the Web UI in EMC Data Protection Advisor (DPA) 5.6 through SP1, 5.7 through SP1, and 5.8 through SP4 allows remote attackers to read arbitrary files via unspecified vectors.

Affected configurations

NVD

Node

emcdata_protection_advisorMatch5.6

emcdata_protection_advisorMatch5.6sp1

emcdata_protection_advisorMatch5.7

emcdata_protection_advisorMatch5.7sp1

emcdata_protection_advisorMatch5.8

emcdata_protection_advisorMatch5.8sp1

emcdata_protection_advisorMatch5.8sp4

CPENameOperatorVersion
emc:data_protection_advisoremc data protection advisoreq5.6
emc:data_protection_advisoremc data protection advisoreq5.7
emc:data_protection_advisoremc data protection advisoreq5.8

CPE	Name	Operator	Version
emc:data_protection_advisor	emc data protection advisor	eq	5.6
emc:data_protection_advisor	emc data protection advisor	eq	5.7
emc:data_protection_advisor	emc data protection advisor	eq	5.8