What is the severity of CVE-2012-0365?

CVE-2012-0365 is classified as a high severity vulnerability due to its potential for arbitrary file uploads.

Who is affected by CVE-2012-0365?

CVE-2012-0365 affects users of Cisco SRP 520 series devices with firmware versions prior to 1.1.26 and 540 series devices prior to 1.2.4.

How do I fix CVE-2012-0365?

To fix CVE-2012-0365, upgrade your Cisco device firmware to the latest version specified in the advisory.

What type of vulnerability is CVE-2012-0365?

CVE-2012-0365 is a directory traversal vulnerability that allows remote authenticated users to upload files to arbitrary directories.

What are the consequences of exploiting CVE-2012-0365?

Exploiting CVE-2012-0365 can lead to unauthorized software uploads, potentially compromising the affected device's integrity.

Vulnerability/
CVE-2012-0365

critical

CWE

25/2/2012

6/8/2024

CVE-2012-0365: Path Traversal

First published: Sat Feb 25 2012(Updated: )

Directory traversal vulnerability in the Local TFTP file-upload application on Cisco SRP 520 series devices with firmware before 1.1.26 and SRP 520W-U and 540 series devices with firmware before 1.2.4 allows remote authenticated users to upload software to arbitrary directories via unspecified vectors, aka Bug ID CSCtw56009.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Small Business SRP520-U Series Firmware	<=1.01.24
Cisco Small Business SRP520-U Series Firmware	=1.01.01
Cisco Small Business SRP520-U Series Firmware	=1.01.09
Cisco Small Business SRP520-U Series Firmware	=1.01.11
Cisco Small Business SRP520-U Series Firmware	=1.01.19
Cisco Small Business SRP520-U Series Firmware	=1.01.23
Cisco SRP521W
Cisco Small Business SRP526W/U
Cisco Small Business SRP527W
Cisco SRP520 Firmware	=1.1.0
Cisco SRP521W
Cisco Small Business SRP526W/U
Cisco Small Business SRP527W
Cisco Small Business SA540 Firmware	<=1.02.01
Cisco Small Business SA540 Firmware	=1.02.00.023
Cisco Small Business SRP541W
Cisco Small Business SRP546W
Cisco Small Business SRP547W

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2012-0365?
CVE-2012-0365 is classified as a high severity vulnerability due to its potential for arbitrary file uploads.
Who is affected by CVE-2012-0365?
CVE-2012-0365 affects users of Cisco SRP 520 series devices with firmware versions prior to 1.1.26 and 540 series devices prior to 1.2.4.
How do I fix CVE-2012-0365?
To fix CVE-2012-0365, upgrade your Cisco device firmware to the latest version specified in the advisory.
What type of vulnerability is CVE-2012-0365?
CVE-2012-0365 is a directory traversal vulnerability that allows remote authenticated users to upload files to arbitrary directories.
What are the consequences of exploiting CVE-2012-0365?
Exploiting CVE-2012-0365 can lead to unauthorized software uploads, potentially compromising the affected device's integrity.

agent/references
agent/type
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/author
agent/weakness
agent/description
agent/first-publish-date
agent/event
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco small business srp520-u series firmware
version/cisco small business srp520-u series firmware/1.01.24
version/cisco small business srp520-u series firmware/1.01.01
version/cisco small business srp520-u series firmware/1.01.09
version/cisco small business srp520-u series firmware/1.01.11
version/cisco small business srp520-u series firmware/1.01.19
version/cisco small business srp520-u series firmware/1.01.23
canonical/cisco srp521w
canonical/cisco small business srp526w/u
canonical/cisco small business srp527w
canonical/cisco srp520 firmware
version/cisco srp520 firmware/1.1.0
canonical/cisco small business sa540 firmware
version/cisco small business sa540 firmware/1.02.01
version/cisco small business sa540 firmware/1.02.00.023
canonical/cisco small business srp541w
canonical/cisco small business srp546w
canonical/cisco small business srp547w