On F5 BIG-IP AFM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, and 13.1.x versions before 13.1.5, an authenticated attacker with high privileges can upload a maliciously crafted file to the BIG-IP AFM Configuration utility, which allows an malicious user to run arbitrary commands. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
f5 big-ip advanced firewall manager 13.1.0 |
||
f5 big-ip advanced firewall manager 14.1.0 |
||
f5 big-ip advanced firewall manager 15.1.0 |
||
f5 big-ip advanced firewall manager 14.1.4 |
||
f5 big-ip advanced firewall manager 16.1.0 |
||
f5 big-ip advanced firewall manager 17.0.0 |
||
f5 big-ip advanced firewall manager 16.1.2 |
||
f5 big-ip advanced firewall manager 16.1.1 |
||
f5 big-ip advanced firewall manager 15.1.5 |
||
f5 big-ip advanced firewall manager 15.1.4 |
||
f5 big-ip advanced firewall manager 15.1.3 |
||
f5 big-ip advanced firewall manager 15.1.2 |
||
f5 big-ip advanced firewall manager 15.1.1 |
||
f5 big-ip advanced firewall manager 14.1.3 |
||
f5 big-ip advanced firewall manager 14.1.2 |
||
f5 big-ip advanced firewall manager 13.1.5 |
||
f5 big-ip advanced firewall manager 13.1.4 |
||
f5 big-ip advanced firewall manager 13.1.3 |
||
f5 big-ip advanced firewall manager 13.1.1 |