Lucene search
F5SOL15229HistoryMay 02, 2014 - 12:00 a.m.
SOL15229 - BIG-IQ / BIG-IP privilege escalation vulnerability CVE-2014-3220
2014-05-0200:00:00
support.f5.com
14
EPSS
0.013
Percentile
86.2%
*If the BIG-IQ 4.1 system is used to discover a BIG-IP 11.3.0 or 11.4.0 system, an authenticated user on the BIG-IP system may be able to modify the password of another user, including an administrator.
Recommended Action
If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version.
Supplemental Information
- SOL9970: Subscribing to email notifications regarding F5 products
- SOL9957: Creating a custom RSS feed to view new and updated documents
- SOL4602: Overview of the F5 security vulnerability response policy
- SOL4918: Overview of the F5 critical issue hotfix policy
- SOL167: Downloading software and firmware from F5
References
support.f5.com/kb/en-us/solutions/public/0000/100/sol167.html
support.f5.com/kb/en-us/solutions/public/4000/600/sol4602.html
support.f5.com/kb/en-us/solutions/public/4000/900/sol4918.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9957.html
support.f5.com/kb/en-us/solutions/public/9000/900/sol9970.html
Related
exploitdb
exploitdb
F5 BIG-IQ 4.1.0.2013.0 - Privilege Escalation (Metasploit)
2014-05-02 00:00:00
nvd
nvd
CVE-2014-2937
2014-11-06 00:55:02
CVE-2014-3220
2014-05-05 17:06:05
openvas
openvas
F5 BIG-IP - privilege escalation vulnerability CVE-2014-3220
2015-09-19 00:00:00
cve
cve
CVE-2014-2937
2014-11-06 00:55:02
CVE-2014-3220
2014-05-05 17:06:05
prion
prion
Design/Logic Flaw
2014-11-06 00:55:00
Default credentials
2014-05-05 17:06:00
cvelist
cvelist
CVE-2014-3220
2014-05-05 17:00:00
CVE-2014-2937
2014-11-06 00:00:00
f5
f5
K15229 : BIG-IQ / BIG-IP privilege escalation vulnerability CVE-2014-3220
2014-11-04 00:00:00
nessus
nessus
F5 Networks BIG-IQ Configuration Utility Privilege Escalation
2014-05-09 00:00:00