Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
9.3
CVSSv2

CVE-2013-0150

Published: 09/08/2013 Updated: 14/12/2023
CVSS v2 Base Score: 9.3 | Impact Score: 10 | Exploitability Score: 8.6
VMScore: 828
Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C
Subscribe to Big-ip Advanced Firewall Manager

Vulnerability Summary

Directory traversal vulnerability in an unspecified signed Java applet in the client-side components in F5 BIG-IP APM 10.1.0 up to and including 10.2.4 and 11.0.0 up to and including 11.3.0, FirePass 6.0.0 up to and including 6.1.0 and 7.0.0, and other products "when APM is provisioned," allows remote malicious users to upload and execute arbitrary files via a .. (dot dot) in the filename parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

f5 big-ip advanced firewall manager 11.3.0

f5 big-ip policy enforcement manager 11.3.0

f5 firepass 7.0.0

f5 big-ip access policy manager

f5 big-ip edge gateway

f5 big-ip webaccelerator

f5 big-ip wan optimization manager

f5 firepass

f5 big-ip link controller

f5 big-ip global traffic manager

f5 big-ip protocol security module

f5 big-ip local traffic manager

f5 big-ip application security manager

f5 big-ip analytics

References

CWE-22https://nealpoole.com/blog/2013/07/code-execution-via-f5-networks-java-applet/http://secunia.com/advisories/53477http://support.f5.com/kb/en-us/solutions/public/14000/400/sol14468.htmlhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook