{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-07T07:25:40.462","vulnerabilities":[{"cve":{"id":"CVE-2012-0305","sourceIdentifier":"cve@mitre.org","published":"2012-07-23T17:55:03.373","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Untrusted search path vulnerability in Symantec System Recovery 2011 before SP2 and Backup Exec System Recovery 2010 before SP5 allows local users to gain privileges via a Trojan horse DLL in the current working directory."},{"lang":"es","value":"Vulnerabilidad de path de búsqueda no confiable en Symantec System Recovery 2011 anteriores a SP2 y Backup Exec System Recovery 2010 anteriores a SP5, podría permitir a usuario locales obtener privilegios a través de una DLL troyanizada en el directorio de trabajo actual."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:L/AC:M/Au:N/C:P/I:P/A:P","baseScore":4.4,"accessVector":"LOCAL","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"PARTIAL","integrityImpact":"PARTIAL","availabilityImpact":"PARTIAL"},"baseSeverity":"MEDIUM","exploitabilityScore":3.4,"impactScore":6.4,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":true}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:symantec:backupexec_system_recovery:2010:*:*:*:*:*:*:*","matchCriteriaId":"1C27E870-B317-424C-A315-ABFB38AE4697"},{"vulnerable":true,"criteria":"cpe:2.3:a:symantec:backupexec_system_recovery:2011:*:*:*:*:*:*:*","matchCriteriaId":"AD81DCC7-EC02-4DB7-992C-2982487B8212"},{"vulnerable":true,"criteria":"cpe:2.3:a:symantec:system_recovery:2011:*:*:*:*:*:*:*","matchCriteriaId":"D84FE1A9-2A18-4D84-ADB4-1BC6767B9C89"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/54594","source":"cve@mitre.org"},{"url":"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120720_01","source":"cve@mitre.org"},{"url":"http://www.securityfocus.com/bid/54594","source":"af854a3a-2127-422b-91ae-364da2661108"},{"url":"http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=2012&suid=20120720_01","source":"af854a3a-2127-422b-91ae-364da2661108"}],"evaluatorComment":"Per: http://cwe.mitre.org/data/definitions/426.html 'CWE-426: Untrusted Search Path'"}}]}