CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

CVE•added 2014/01/21 6:0 p.m.•46 views

CVE-2012-2997

CVE-2012-2997 is an XML External Entity (XXE) vulnerability affecting F5 BIG-IP components, specifically in sam/admin/vpe2/public/php/server.php. The issue allows remote authenticated users to read arbitrary files on the device by submitting a crafted XML file. Affected versions, per SEC Consult ...

4CVSS6.2AI score0.06443EPSS

Exploits2References6Affected Software1

securityvulns•added 2013/01/27 12:0 a.m.•60 views

SEC Consult SA-20130122-0 :: F5 BIG-IP XML External Entity Injection vulnerability

SEC Consult Vulnerability Lab Security Advisory 20130122-0 ======================================================================= title: XML External Entity Injection XXE product: F5 BIG-IP vulnerable version: =11.2.0 fixed version: 11.2.0 HF3 11.2.1 HF3 CVE number: CVE-2012-2997 impact: Medium...

4CVSS6.6AI score0.06443EPSS

Exploits2

Packet Storm•added 2013/01/22 12:0 a.m.•62 views

F5 BIG-IP 11.2.0 XML External Entity Injection

SEC Consult Vulnerability Lab Security Advisory ======================================================================= title: XML External Entity Injection XXE product: F5 BIG-IP vulnerable version: =11.2.0 fixed version: 11.2.0 HF3 11.2.1 HF3 CVE number: CVE-2012-2997 impact: Medium homepage:...

4CVSS0.2AI score0.06443EPSS

Exploits2

F5 Networks•added 2013/01/21 12:0 a.m.•41 views

SOL14138 - XML External Entity Injection (XXE) from authenticated source vulnerability CVE-2012-2997

Vulnerability Recommended Actions To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column. Acknowledgements F5 would like to acknowledge SEC Consult Vulnerability Lab for bringing this issue to our attention, and for following the...

4CVSS2.9AI score0.06443EPSS

Exploits2References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by