4 matches found
K39428424: SQL injection vulnerability CVE-2017-0304
Security Advisory Description The SQL injection vulnerability in the Configuration utility is related to the BIG-IP AFM system. CVE-2017-0304 Impact An attacker can exploit this vulnerability regardless of the BIG-IP AFM provisioning configuration; however, exploiting this vulnerability does not...
F5 Networks BIG-IP : SQL injection vulnerability (K39428424)
The SQL injection vulnerability in the Configuration utility is related to the BIG-IP AFM system.CVE-2017-0304 Impact An attacker can exploit this vulnerabilityregardless of the BIG-IP AFM provisioning configuration; however, exploiting this vulnerability does not impact traffic processing or the...
CVE-2017-0304
A SQL injection vulnerability exists in the BIG-IP AFM management UI on versions 12.0.0, 12.1.0, 12.1.1, 12.1.2 and 13.0.0 that may allow a copy of the firewall rules to be tampered with and impact the Configuration Utility until there is a resync of the rules. Traffic processing and the live...
CVE-2017-0304
CVE-2017-0304 describes an SQL injection vulnerability in the BIG-IP AFM Configuration utility (management UI). Affected: BIG-IP AFM 13.x (13.0.0 with HF1 for 13.0.0), 12.x (12.0.0–12.1.2 with 12.1.3 fixes), and 11.x (not applicable). Root cause: SQL injection in the Configuration utility. Impact...