Lucene search
K

6 matches found

redhatcve
redhatcve
added 2025/05/22 7:17 p.m.11 views

CVE-2021-23014

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x before 14.1.4, BIG-IP Advanced WAF and ASM are missing authorization checks for file uploads to a specific directory within the REST API which might allow Authenticated users with guest privileges to upload files. Note: Software...

8.8CVSS6.9AI score0.00804EPSS
Exploits0References1
f5
f5
added 2023/02/21 6:32 p.m.35 views

K23203045: BIG-IP Advanced WAF and ASM REST API vulnerability CVE-2021-23014

Security Advisory Description BIG-IP Advanced WAF and ASM are missing authorization checks for file uploads to a specific directory within the REST API, which might allow authenticated users with guest privileges to upload files. CVE-2021-23014 Impact If an attacker has network access to the BIG-...

8.8CVSS8.3AI score0.00804EPSS
Exploits0Affected Software2
nvd
nvd
added 2021/05/10 3:15 p.m.22 views

CVE-2021-23014

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x before 14.1.4, BIG-IP Advanced WAF and ASM are missing authorization checks for file uploads to a specific directory within the REST API which might allow Authenticated users with guest privileges to upload files. Note: Software...

8.8CVSS0.00804EPSS
Exploits0References1
cvelist
cvelist
added 2021/05/10 2:35 p.m.25 views

CVE-2021-23014

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x before 14.1.4, BIG-IP Advanced WAF and ASM are missing authorization checks for file uploads to a specific directory within the REST API which might allow Authenticated users with guest privileges to upload files. Note: Software...

8.9AI score0.00804EPSS
Exploits0References1
cve
cve
added 2021/05/10 2:35 p.m.82 views

CVE-2021-23014

CVE-2021-23014 affects BIG-IP Advanced WAF and ASM REST API. A missing authorization check for file uploads to a specific REST API directory could allow an authenticated user with guest privileges to upload files. Affected branches: 16.x before 16.0.1.1; 15.x before 15.1.3; 14.x before 14.1.4 (Eo...

8.8CVSS8.7AI score0.00804EPSS
Exploits0References1Affected Software2
nessus
nessus
added 2021/04/29 12:0 a.m.29 views

F5 Networks BIG-IP : BIG-IP Advanced WAF and ASM REST API vulnerability (K23203045)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.4 / 15.1.3 / 16.0.1.1 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K23203045 advisory. - On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, and 14.1.x before 14.1.4, BIG-IP...

8.8CVSS8AI score0.00804EPSS
Exploits0References2
Rows per page
Query Builder