The iControl API in F5 BIG-IP LTM, APM, ASM, GTM, Link Controller, and PSM 10.0.0 up to and including 10.2.4 and 11.0.0 up to and including 11.5.1, BIG-IP AAM 11.4.0 up to and including 11.5.1, BIG-IP AFM and PEM 11.3.0 up to and including 11.5.1, BIG-IP Analytics 11.0.0 up to and including 11.5.1, BIG-IP Edge Gateway, WebAccelerator, WOM 10.1.0 up to and including 10.2.4 and 11.0.0 up to and including 11.3.0, Enterprise Manager 2.1.0 up to and including 2.3.0 and 3.0.0 up to and including 3.1.1, and BIG-IQ Cloud, Device, and Security 4.0.0 up to and including 4.3.0 allows remote administrators to execute arbitrary commands via shell metacharacters in the hostname element in a SOAP request.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
f5 big-ip webaccelerator 11.0.0 |
||
f5 big-ip webaccelerator 10.2.3 |
||
f5 big-ip webaccelerator 10.0.1 |
||
f5 big-ip webaccelerator 9.4.8 |
||
f5 big-ip webaccelerator 9.4.1 |
||
f5 big-ip webaccelerator 11.3.0 |
||
f5 big-ip webaccelerator 11.2.1 |
||
f5 big-ip webaccelerator 11.2.0 |
||
f5 big-ip webaccelerator 9.4.6 |
||
f5 big-ip webaccelerator 9.4.5 |
||
f5 big-ip webaccelerator 9.4.4 |
||
f5 big-ip webaccelerator 9.4.3 |
||
f5 big-ip webaccelerator 9.4.2 |
||
f5 big-ip webaccelerator 10.2.2 |
||
f5 big-ip webaccelerator 10.2.1 |
||
f5 big-ip webaccelerator 10.2.0 |
||
f5 big-ip webaccelerator 10.1.0 |
||
f5 big-ip webaccelerator 11.1.0 |
||
f5 big-ip webaccelerator 10.2.4 |
||
f5 big-ip webaccelerator 10.0.0 |
||
f5 big-ip webaccelerator 9.4.7 |
||
f5 big-ip webaccelerator 9.4.0 |
||
f5 big-ip local traffic manager 10.0.0 |
||
f5 big-ip local traffic manager 10.2.2 |
||
f5 big-ip local traffic manager 10.2.1 |
||
f5 big-ip local traffic manager 10.2.0 |
||
f5 big-ip local traffic manager 10.1.0 |
||
f5 big-ip local traffic manager 11.0.0 |
||
f5 big-ip local traffic manager 10.0.1 |
||
f5 big-ip protocol security module 11.4.1 |
||
f5 big-ip protocol security module 11.1.0 |
||
f5 big-ip protocol security module 10.2.4 |
||
f5 big-ip protocol security module 10.0.0 |
||
f5 big-ip protocol security module 9.4.7 |
||
f5 big-ip protocol security module 11.4.0 |
||
f5 big-ip protocol security module 11.3.0 |
||
f5 big-ip protocol security module 11.2.1 |
||
f5 big-ip protocol security module 11.2.0 |
||
f5 big-ip protocol security module 9.4.5 |
||
f5 big-ip protocol security module 10.2.2 |
||
f5 big-ip protocol security module 10.2.1 |
||
f5 big-ip protocol security module 10.2.0 |
||
f5 big-ip protocol security module 10.1.0 |
||
f5 big-ip protocol security module 10.0.1 |
||
f5 big-ip protocol security module 11.0.0 |
||
f5 big-ip protocol security module 10.2.3 |
||
f5 big-ip protocol security module 9.4.8 |
||
f5 big-ip protocol security module 9.4.6 |
||
f5 big-ip link controller 10.2.0 |
||
f5 big-ip link controller 10.0.1 |
||
f5 big-ip link controller 11.0.0 |
||
f5 big-ip link controller 10.2.2 |
||
f5 big-ip link controller 10.0.0 |
||
f5 big-ip link controller 10.2.1 |
||
f5 big-ip link controller 10.1.0 |
||
f5 big-ip application security manager 10.2.1 |
||
f5 big-ip application security manager 11.0.0 |
||
f5 big-ip application security manager 10.2.2 |
||
f5 big-ip application security manager 10.1.0 |
||
f5 big-ip application security manager 10.0.0 |
||
f5 big-ip application security manager 10.2.0 |
||
f5 big-ip application security manager 10.0.1 |
||
f5 big-ip global traffic manager 11.0.0 |
||
f5 big-ip global traffic manager 10.2.2 |
||
f5 big-ip global traffic manager 10.2.1 |
||
f5 big-ip global traffic manager 10.2.0 |
||
f5 big-ip global traffic manager 10.0.1 |
||
f5 big-ip global traffic manager 10.1.0 |
||
f5 big-ip global traffic manager 10.0.0 |
||
f5 big-ip wan optimization manager 11.0.0 |
||
f5 big-ip wan optimization manager 10.2.2 |
||
f5 big-ip wan optimization manager 10.2.1 |
||
f5 big-ip wan optimization manager 10.1.0 |
||
f5 big-ip wan optimization manager 10.0.0 |
||
f5 big-ip wan optimization manager 10.2.0 |
||
f5 big-ip wan optimization manager 10.0.1 |
||
f5 big-ip access policy manager 10.1.0 |
||
f5 big-ip access policy manager 11.0.0 |
||
f5 big-ip access policy manager 10.2.2 |
||
f5 big-ip access policy manager 10.2.1 |
||
f5 big-ip access policy manager 10.2.0 |
||
f5 big-ip edge gateway 10.2.1 |
||
f5 big-ip edge gateway 10.2.0 |
||
f5 big-ip edge gateway 10.1.0 |
||
f5 big-ip edge gateway 10.2.2 |
||
f5 big-ip edge gateway 11.0.0 |
Vulmon