Lucene search
F5CVELIST:CVE-2016-6249HistoryFeb 20, 2017 - 3:00 p.m.
CVE-2016-6249
2017-02-2015:00:00
f5
www.cve.org
F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account authentication may log sensitive attributes such as passwords in plaintext to /var/log/restjavad.0.log. It may allow local users to obtain sensitive information by reading these files.
CNA Affected
[
{
"product": "F5 BIG-IP, REST Framework Logging",
"vendor": "F5 Networks",
"versions": [
{
"status": "affected",
"version": "BIG-IP 12.0.0, BIG-IP 11.5.0 - 11.6.1"
}
]
}
]Related
f5
f5
K12685114 : BIG-IP REST vulnerability CVE-2016-6249
2017-02-11 00:00:00
cve
cve
CVE-2016-6249
2017-02-20 15:59:00
prion
prion
Design/Logic Flaw
2017-02-20 15:59:00
nvd
nvd
CVE-2016-6249
2017-02-20 15:59:00
nessus
nessus
F5 Networks BIG-IP : BIG-IP REST vulnerability (K12685114)
2017-02-15 00:00:00
openvas
openvas
F5 BIG-IP - REST vulnerability CVE-2016-6249
2017-02-21 00:00:00