{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-02T00:14:30.171","vulnerabilities":[{"cve":{"id":"CVE-2012-4701","sourceIdentifier":"ics-cert@hq.dhs.gov","published":"2013-02-15T12:09:27.773","lastModified":"2026-04-29T01:13:23.040","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"Directory traversal vulnerability in Tridium Niagara AX 3.5, 3.6, and 3.7 allows remote attackers to read sensitive files, and consequently execute arbitrary code, by leveraging (1) valid credentials or (2) the guest feature."},{"lang":"es","value":"Vulnerabilidad de directorio trasversal en  Tridium Niagara AX v3.5, v3.6, y v3.7 que permite ataques remotos para la lectura de ficheros y ejecutar código haciendo uso de la validación de credenciales."}],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:M/Au:N/C:C/I:C/A:C","baseScore":9.3,"accessVector":"NETWORK","accessComplexity":"MEDIUM","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.6,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-22"}]}],"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:tridium:niagara_ax:3.5:*:*:*:*:*:*:*","matchCriteriaId":"5F2BEB15-BFB9-4936-A5CB-F1E2B35D2482"},{"vulnerable":true,"criteria":"cpe:2.3:a:tridium:niagara_ax:3.6:*:*:*:*:*:*:*","matchCriteriaId":"B21BACBE-5117-49FB-8BCF-8499716C345C"},{"vulnerable":true,"criteria":"cpe:2.3:a:tridium:niagara_ax:3.7:*:*:*:*:*:*:*","matchCriteriaId":"5A9B9834-10D8-47A7-981A-1947342C1E81"}]}]}],"references":[{"url":"http://ics-cert.us-cert.gov/pdf/ICSA-13-045-01.pdf","source":"ics-cert@hq.dhs.gov","tags":["Broken Link","Third Party Advisory","US Government Resource"]},{"url":"https://www.niagara-central.com/ord?portal:/dev/wiki/Niagara_AX_Security_Patch_11-Feb-2013","source":"ics-cert@hq.dhs.gov","tags":["Broken Link"]},{"url":"http://ics-cert.us-cert.gov/pdf/ICSA-13-045-01.pdf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link","Third Party Advisory","US Government Resource"]},{"url":"https://www.niagara-central.com/ord?portal:/dev/wiki/Niagara_AX_Security_Patch_11-Feb-2013","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Broken Link"]}]}}]}