4 matches found
CVE-2017-15524
The CVE-2017-15524 entry concerns Kemp Load Balancer’s Application Firewall Pack (AFP/WAF). A security feature bypass exists where HTTP POST data is not inspected, enabling bypass of the Web Application Firewall. Affected versions are Kemp AFP prior to 7.2.40.1; remediation is upgrading to 7.2.40...
CVE-2017-15524
The Application Firewall Pack AFP, aka Web Application Firewall component on Kemp Load Balancer devices with software before 7.2.40.1 allows a Security Feature Bypass via an HTTP POST request...
Kemp Load Balancer WAF 7.2.40 Bypass
ADVISORY SUMMARY Kemp Load Balancers - Module Application Firewall Pack AFP - Web Application Firewall WAF does not inspect HTTP POST data Risk: high Application: Kemp Load Balancers - Module Application Firewall Pack AFP Versions Affected: 7.1.30 Nov 2015 to 7.2.40 Oct 2017 // Older versions...
Kemp Load Balancer WAF 7.2.40 Bypass Vulnerability
Exploit for hardware platform in category web applications 1. ADVISORY SUMMARY Kemp Load Balancers - Module Application Firewall Pack AFP - Web Application Firewall WAF does not inspect HTTP POST data Risk: high Application: Kemp Load Balancers - Module Application Firewall Pack AFP Versions...