Lucene search

K
f5F5SOL13588
HistoryMay 17, 2012 - 12:00 a.m.

SOL13588 - PHP vulnerability CVE-2011-4885

2012-05-1700:00:00
support.f5.com
49

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.875 High

EPSS

Percentile

98.3%

Recommended action

  • BIG-IP

To mitigate this vulnerability, expose the administrative interface only on trusted networks and limit login access to trusted users.

  • FirePass

For information about hotfix status, contact F5 Technical Support.

Supplemental Information

  • CVE-2011-4885
  • SOL9970: Subscribing to email notifications regarding F5 products
  • SOL9957: Creating a custom RSS feed to view new and updated documents.
  • SOL4602: Overview of the F5 security vulnerability response policy
  • SOL4918: Overview of the F5 critical issue hotfix policy
  • SOL167: Downloading software and firmware from F5
  • SOL9502: BIG-IP hotfix matrix
  • SOL10322: FirePass hotfix matrix
  • SOL12766: ARX hotfix matrix
  • SOL2200: Most recent versions of F5 software

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.875 High

EPSS

Percentile

98.3%