9
CVSSv2

CVE-2015-7394

Published: 06/11/2015 Updated: 06/06/2019
CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8
VMScore: 801
Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

Vulnerability Summary

The datastor kernel module in F5 BIG-IP Analytics, APM, ASM, Link Controller, and LTM 11.1.0 prior to 12.0.0, BIG-IP AAM 11.4.0 prior to 12.0.0, BIG-IP AFM, PEM 11.3.0 prior to 12.0.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.1.0 up to and including 11.3.0, BIG-IP GTM 11.1.0 up to and including 11.6.0, BIG-IP PSM 11.1.0 up to and including 11.4.1, BIG-IQ Cloud and Security 4.0.0 up to and including 4.5.0, BIG-IQ Device 4.2.0 up to and including 4.5.0, BIG-IQ ADC 4.5.0, and Enterprise Manager 3.0.0 up to and including 3.1.1 allows remote authenticated users to cause a denial of service or gain privileges by leveraging permission to upload and execute code.

Affected Products

Vendor Product Versions
F5Big-ip Access Policy Manager11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Advanced Firewall Manager11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Analytics11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Application Acceleration Manager11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Application Security Manager11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Edge Gateway11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-ip Enterprise Manager3.0.0, 3.1.0, 3.1.1
F5Big-ip Global Traffic Manager11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Link Controller11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Local Traffic Manager11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3
F5Big-ip Policy Enforcement Manager11.3.0, 11.4.0, 11.4.1, 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.6.0
F5Big-ip Protocol Security Module11.1.0, 11.2.0, 11.2.1, 11.3.0, 11.4.0, 11.4.1
F5Big-ip Wan Optimization Manager11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-ip Webaccelerator11.1.0, 11.2.0, 11.2.1, 11.3.0
F5Big-iq Adc4.5.0
F5Big-iq Cloud4.0.0, 4.1.0, 4.2.0, 4.3.0, 4.4.0, 4.5.0
F5Big-iq Device4.2.0, 4.3.0, 4.4.0, 4.5.0
F5Big-iq Security4.0.0, 4.1.0, 4.2.0, 4.3.0, 4.4.0, 4.5.0