Lucene search
K

5 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:48 p.m.40 views

K15236: ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927

Security Advisory Description The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 before HF4, 11.4.0 before HF7, 11.3.0 before HF9, and 11.2.1 before HF11 and Enterprise Manager 3.x before 3.1.1 HF2, when configured in failover mode, does not require...

9.3CVSS6.7AI score0.0792EPSS
Exploits5Affected Software14
OpenVAS
OpenVAS
added 2015/01/19 12:0 a.m.31 views

Multiple F5 Networks Products - ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927 - Active Check

Multiple F5 Networks Products are prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

9.3CVSS5.5AI score0.0792EPSS
Exploits5References2
CVE
CVE
added 2014/10/15 2:0 p.m.69 views

CVE-2014-2927

F5 BIG-IP ConfigSync rsync vulnerability (CVE-2014-2927) allows unauthenticated remote read/write via the ConfigSync IP in failover mode. Affected: BIG-IP LTM and multiple modules (and Enterprise Manager 3.x) across versions from 11.0.0 up to 11.5.1 (including HF3/HF4 and related revisions) and 3...

9.3CVSS6.6AI score0.0792EPSS
Exploits5References3Affected Software19
Tenable Nessus
Tenable Nessus
added 2014/10/10 12:0 a.m.38 views

F5 Networks BIG-IP : ConfigSync IP Rsync full file system access vulnerability (K15236)

The rsync daemon in F5 BIG-IP 11.6 before 11.6.0, 11.5.1 before HF3, 11.5.0 before HF4, 11.4.1 before HF4, 11.4.0 before HF7, 11.3.0 before HF9, and 11.2.1 before HF11 and Enterprise Manager 3.x before 3.1.1 HF2, when configured in failover mode, does not require authentication, which allows remo...

9.3CVSS5.5AI score0.0792EPSS
Exploits5References2
F5 Networks
F5 Networks
added 2014/08/28 12:0 a.m.57 views

SOL15236 - ConfigSync IP Rsync full file system access vulnerability CVE-2014-2927

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. To mitigate this...

9.3CVSS6.2AI score0.0792EPSS
Exploits5References7
Rows per page
Query Builder