Lucene search
F5F5:K55792317HistoryMay 05, 2017 - 12:00 a.m.
K55792317 : BIG-IP management vulnerability CVE-2016-9250
2017-05-0500:00:00
my.f5.com
12
0.001 Low
EPSS
Percentile
42.1%
Security Advisory Description
In F5 BIG-IP 11.2.1, 11.4.0 through 11.6.1, and 12.0.0 through 12.1.2, an unauthenticated user with access to the control plane may be able to delete arbitrary files through an undisclosed mechanism. (CVE-2016-9250)
Impact
An unauthenticated user with access to the management control plane may be able to delete arbitrary files through an undisclosed mechanism. There is control plane exposure for the web Configuration utility, iControl REST, and iControl SOAP. There is no data plane exposure.
| CPE | Name | Operator | Version |
|---|---|---|---|
| big-ip afm | eq | 11.4.0 | |
| big-ip afm | eq | 11.4.1 | |
| big-ip afm | eq | 11.5.0 | |
| big-ip afm | eq | 11.5.1 | |
| big-ip afm | eq | 11.5.2 | |
| big-ip afm | eq | 11.5.3 | |
| big-ip afm | eq | 11.5.4 | |
| big-ip afm | eq | 11.6.0 | |
| big-ip afm | eq | 11.6.1 | |
| big-ip afm | eq | 12.0.0 |
Related
nessus
nessus
F5 Networks BIG-IP : BIG-IP management vulnerability (K55792317)
2017-05-08 00:00:00
nvd
nvd
CVE-2016-9250
2017-05-10 14:29:00
cve
cve
CVE-2016-9250
2017-05-10 14:29:00
prion
prion
Design/Logic Flaw
2017-05-10 14:29:00
cvelist
cvelist
CVE-2016-9250
2017-05-10 14:00:00