Lucene search
K

4 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.45 views

K39428424: SQL injection vulnerability CVE-2017-0304

Security Advisory Description The SQL injection vulnerability in the Configuration utility is related to the BIG-IP AFM system. CVE-2017-0304 Impact An attacker can exploit this vulnerability regardless of the BIG-IP AFM provisioning configuration; however, exploiting this vulnerability does not...

5.5CVSS6.1AI score0.0099EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.26 views

F5 Networks BIG-IP : SQL injection vulnerability (K39428424)

The SQL injection vulnerability in the Configuration utility is related to the BIG-IP AFM system.CVE-2017-0304 Impact An attacker can exploit this vulnerabilityregardless of the BIG-IP AFM provisioning configuration; however, exploiting this vulnerability does not impact traffic processing or the...

5.5CVSS5.8AI score0.0099EPSS
Exploits0References2
NVD
NVD
added 2017/12/21 5:29 p.m.25 views

CVE-2017-0304

A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live...

5.5CVSS5.9AI score0.0099EPSS
Exploits0References3
CVE
CVE
added 2017/12/21 5:0 p.m.65 views

CVE-2017-0304

CVE-2017-0304 describes an SQL injection vulnerability in the BIG-IP AFM Configuration utility (management UI). Affected: BIG-IP AFM 13.x (13.0.0 with HF1 for 13.0.0), 12.x (12.0.0–12.1.2 with 12.1.3 fixes), and 11.x (not applicable). Root cause: SQL injection in the Configuration utility. Impact...

5.5CVSS5.8AI score0.0099EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder