4 matches found
F5 BIG-IP 10.1.0 - Directory Traversal Vulnerability
Affected Product : F5 BIG-IP Vendor Homepage : http://www.f5.com/ Version : 10.1.0 Vulnerability Category : Local vulnerability Discovered by : Anastasios Monachos secuid0 - anastasiosm at gmail dot com CVE : CVE-2014-8727 Patched : Yes An authenticated user with either "Resource Administrator" o...
F5 BIG-IP - Directory traversal vulnerability CVE-2014-8727
F5 BIG-IP is prone to a directory traversal vulnerability. SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/h:f5:big-ip"; if...
F5 Networks BIG-IP : Directory Traversal and File Deletion (ID 363027)
The 'properties.jsp' and 'tmui/Control/form' contain a flaw in how user-supplied parameters are validated, specifically the 'name' parameter. An authenticated user with the role of 'Resource Administrator' or 'Administrator' can exploit this flaw to arbitrarily enumerate and subsequently delete...
CVE-2014-8727
CVE-2014-8727 affects F5 BIG-IP before 10.2.2. The vulnerability is a directory traversal flaw in the properties.jsp and tmui/form paths that an authenticated Resource Administrator or Administrator can use to enumerate and delete arbitrary files (e.g., via .. in the name parameter). Impact is th...