CPE Details
F5 Big-IP Advanced Firewall Manager (AFM) 17.1.0.2
17.1.0.2
2023-08-07
13h40 +00:00
13h40 +00:00
2023-08-07
16h14 +00:00
16h14 +00:00
Alerte pour un CPE
Stay informed of any changes for a specific CPE.
CPE Name: cpe:2.3:a:f5:big-ip_advanced_firewall_manager:17.1.0.2:*:*:*:*:*:*:*
Informations
Vendor
f5Product
big-ip_advanced_firewall_managerVersion
17.1.0.2Related CVE
| CVE ID | Published | Description | Score | Severity |
|---|---|---|---|---|
| When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad actor detection, undisclosed queries can cause the Traffic Management Microkernel (TMM) to terminate. NOTE: Software versions which have reached End of Technical Support (EoTS) are not evaluated | 7.5 |
High |
||
| An authenticated SQL injection vulnerability exists in the BIG-IP Configuration utility which may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or self IP addresses to execute arbitrary system commands. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated | 8.8 |
High |
||
| Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated | 9.8 |
Critical |
||
| A directory traversal vulnerability exists in the BIG-IP Configuration Utility that may allow an authenticated attacker to execute commands on the BIG-IP system. For BIG-IP system running in Appliance mode, a successful exploit can allow the attacker to cross a security boundary. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated. | 9.9 |
Critical |
2025©
tesweb SA
