7.1 High
AI Score
Confidence
Low
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.214 Low
EPSS
Percentile
96.0%
Description
Unspecified vulnerability in the _php_stream_scandir function in the stream implementation in PHP before 5.3.15 and 5.4.x before 5.4.5 has unknown impact and remote attack vectors, related to an βoverflow.β (CVE-2012-2688)
Impact
None. F5 products are not affected by this vulnerability.
Status
F5 Product Development has evaluated the currently supported releases for potential vulnerability.
To determine if your release is known to be vulnerable, the components or features that are affected by the vulnerability, and for information about releases or hotfixes that address the vulnerability, refer to the following table:
Product | Versions known to be vulnerable | Versions known to be not vulnerable | Vulnerable component or feature |
---|---|---|---|
BIG-IP LTM | None | ||
11.0.0 - 11.5.1 | |||
10.0.0 - 10.2.4 | |||
None | |||
BIG-IP AAM | None | 11.4.0 - 11.5.1 | None |
BIG-IP AFM | None | 11.3.0 - 11.5.1 | None |
BIG-IP Analytics | None | 11.0.0 - 11.5.1 | None |
BIG-IP APM | None | 11.0.0 - 11.5.1 | |
10.1.0 - 10.2.4 | None | ||
BIG-IP ASM | None | 11.0.0 - 11.5.1 | |
10.0.0 - 10.2.4 | None | ||
BIG-IP Edge Gateway | |||
None | 11.0.0 - 11.3.0 | ||
10.1.0 - 10.2.4 | None | ||
BIG-IP GTM | None | 11.0.0 - 11.5.1 | |
10.0.0 - 10.2.4 | None | ||
BIG-IP Link Controller | None | ||
11.0.0 - 11.5.1 | |||
10.0.0 - 10.2.4 | |||
None | |||
BIG-IP PEM | None | ||
11.3.0 - 11.5.1 | |||
None | |||
BIG-IP PSM | None | 11.0.0 - 11.4.1 | |
10.0.0 - 10.2.4 | None | ||
BIG-IP WebAccelerator | None | 11.0.0 - 11.3.0 | |
10.0.0 - 10.2.4 | None | ||
BIG-IP WOM | None | 11.0.0 - 11.3.0 | |
10.0.0 - 10.2.4 | None | ||
ARX | None | 6.1.1 - 6.4.0 | |
5.0.0 - 5.3.1 | |||
None | |||
Enterprise Manager | None | 3.0.0 - 3.1.1 | |
2.0.0 - 2.3.0 | None | ||
FirePass | None | 7.0.0 | |
6.1.0 | None | ||
BIG-IQ Cloud | None | ||
4.0.0 - 4.3.0 | |||
None | |||
BIG-IQ Device | None | 4.2.0 - 4.3.0 | None |
BIG-IQ Security | None | ||
4.0.0 - 4.3.0 | |||
None | |||
LineRate | None | 2.2.0 - 2.4.0 | None |
Recommended Action
None
Supplemental Information