CVE-2018-15333

🗓️ 28 Dec 2018 15:00:00Reported by f5Type

Unrestricted Snapshot File Access on BIG-I

Reporter	Title	Published	Views	Family All 6
Cvelist	CVE-2018-15333	28 Dec 201815:00	–	cvelist
EUVD	EUVD-2018-7211	7 Oct 202500:30	–	euvd
F5 Networks	K53620021: BIG-IP vulnerability CVE-2018-15333	21 Feb 202318:35	–	f5
Tenable Nessus	F5 Networks BIG-IP : BIG-IP vulnerability (K53620021)	1 May 202000:00	–	nessus
NVD	CVE-2018-15333	28 Dec 201815:29	–	nvd
Prion	Unrestricted file upload	28 Dec 201815:29	–	prion

NVD

Node

f5 big-ip_local_traffic_managerRange11.2.1–11.6.3

f5 big-ip_local_traffic_managerRange12.1.0–12.1.4

f5 big-ip_local_traffic_managerRange13.0.0–13.1.1

f5 big-ip_local_traffic_managerRange14.0.0–14.1.0

Node

f5 big-ip_advanced_firewall_managerRange11.2.1–11.6.3

f5 big-ip_advanced_firewall_managerRange12.1.0–12.1.4

f5 big-ip_advanced_firewall_managerRange13.0.0–13.1.1

f5 big-ip_advanced_firewall_managerRange14.0.0–14.1.0

Node

f5 big-ip_application_acceleration_managerRange11.2.1–11.6.3

f5 big-ip_application_acceleration_managerRange12.1.0–12.1.4

f5 big-ip_application_acceleration_managerRange13.0.0–13.1.1

f5 big-ip_application_acceleration_managerRange14.0.0–14.1.0

Node

f5 big-ip_analyticsRange11.2.1–11.6.3

f5 big-ip_analyticsRange12.1.0–12.1.4

f5 big-ip_analyticsRange13.0.0–13.1.1

f5 big-ip_analyticsRange14.0.0–14.1.0

Node

f5 big-ip_access_policy_managerRange11.2.1–11.6.3

f5 big-ip_access_policy_managerRange12.1.0–12.1.4

f5 big-ip_access_policy_managerRange13.0.0–13.1.1

f5 big-ip_access_policy_managerRange14.0.0–14.1.0

Node

f5 big-ip_domain_name_systemRange11.2.1–11.6.3

f5 big-ip_domain_name_systemRange12.1.0–12.1.4

f5 big-ip_domain_name_systemRange13.0.0–13.1.1

f5 big-ip_domain_name_systemRange14.0.0–14.1.0

Node

f5 big-ip_edge_gatewayRange11.2.1–11.6.3

f5 big-ip_edge_gatewayRange12.1.0–12.1.4

f5 big-ip_edge_gatewayRange13.0.0–13.1.1

f5 big-ip_edge_gatewayRange14.0.0–14.1.0

Node

f5 big-ip_fraud_protection_serviceRange11.2.1–11.6.3

f5 big-ip_fraud_protection_serviceRange12.1.0–12.1.4

f5 big-ip_fraud_protection_serviceRange13.0.0–13.1.1

f5 big-ip_fraud_protection_serviceRange14.0.0–14.1.0

Node

f5 big-ip_global_traffic_managerRange11.2.1–11.6.3

f5 big-ip_global_traffic_managerRange12.1.0–12.1.4

f5 big-ip_global_traffic_managerRange13.0.0–13.1.1

f5 big-ip_global_traffic_managerRange14.0.0–14.1.0

Node

f5 big-ip_link_controllerRange11.2.1–11.6.3

f5 big-ip_link_controllerRange12.1.0–12.1.4

f5 big-ip_link_controllerRange13.0.0–13.1.1

f5 big-ip_link_controllerRange14.0.0–14.1.0

Node

f5 big-ip_policy_enforcement_managerRange11.2.1–11.6.3

f5 big-ip_policy_enforcement_managerRange12.1.0–12.1.4

f5 big-ip_policy_enforcement_managerRange13.0.0–13.1.1

f5 big-ip_policy_enforcement_managerRange14.0.0–14.1.0

Node

f5 big-ip_webacceleratorRange11.2.1–11.6.3

f5 big-ip_webacceleratorRange12.1.0–12.1.4

f5 big-ip_webacceleratorRange13.0.0–13.1.1

f5 big-ip_webacceleratorRange14.0.0–14.1.0

Node

f5 big-ip_application_security_managerRange11.2.1–11.6.3

f5 big-ip_application_security_managerRange12.1.0–12.1.4

f5 big-ip_application_security_managerRange13.0.0–13.1.1

f5 big-ip_application_security_managerRange14.0.0–14.1.0

[
  {
    "product": "BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator)",
    "vendor": "F5 Networks, Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "All versions 11.2.1+"
      }
    ]
  }
]

Source	Link
support	www.support.f5.com/csp/article/K53620021
support	www.support.f5.com/csp/article/K53620021
securityfocus	www.securityfocus.com/bid/106380

21 Nov 2024 03:50Current

5.4Medium risk

Vulners AI Score5.4

CVSS 22.1

CVSS 35.5

EPSS0.00124

CWE-434