First published: Tue Apr 12 2016(Updated: )
Incomplete blacklist vulnerability in the Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, Link Controller, and PSM 11.x before 11.2.1 HF11, 11.3.x, 11.4.0 before HF8, and 11.4.1 before HF6; BIG-IP AAM 11.4.0 before HF8 and 11.4.1 before HF6; BIG-IP AFM and PEM 11.3.x, 11.4.0 before HF8, and 11.4.1 before HF6; and BIG-IP Edge Gateway, WebAccelerator, and WOM 11.x before 11.2.1 HF11 and 11.3.0 allows remote authenticated users to upload files via uploadImage.php.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
F5 BIG-IP Access Policy Manager | =11.0.0 | |
F5 BIG-IP Access Policy Manager | =11.1.0 | |
F5 BIG-IP Access Policy Manager | =11.2.0 | |
F5 BIG-IP Access Policy Manager | =11.2.1 | |
F5 BIG-IP Access Policy Manager | =11.3.0 | |
F5 BIG-IP Access Policy Manager | =11.4.0 | |
F5 BIG-IP Access Policy Manager | =11.4.1 | |
F5 BIG-IP Advanced Firewall Manager | =11.3.0 | |
F5 BIG-IP Advanced Firewall Manager | =11.4.0 | |
F5 BIG-IP Advanced Firewall Manager | =11.4.1 | |
F5 BIG-IP Analytics | =11.0.0 | |
F5 BIG-IP Analytics | =11.1.0 | |
F5 BIG-IP Analytics | =11.2.0 | |
F5 BIG-IP Analytics | =11.2.1 | |
F5 BIG-IP Analytics | =11.3.0 | |
F5 BIG-IP Analytics | =11.4.0 | |
F5 BIG-IP Analytics | =11.4.1 | |
F5 Big-ip Application Acceleration Manager | =11.4.0 | |
F5 Big-ip Application Acceleration Manager | =11.4.1 | |
F5 BIG-IP Application Security Manager | =11.0.0 | |
F5 BIG-IP Application Security Manager | =11.1.0 | |
F5 BIG-IP Application Security Manager | =11.2.0 | |
F5 BIG-IP Application Security Manager | =11.2.1 | |
F5 BIG-IP Application Security Manager | =11.3.0 | |
F5 BIG-IP Application Security Manager | =11.4.0 | |
F5 BIG-IP Application Security Manager | =11.4.1 | |
F5 Big-ip Edge Gateway | =11.0.0 | |
F5 Big-ip Edge Gateway | =11.1.0 | |
F5 Big-ip Edge Gateway | =11.2.0 | |
F5 Big-ip Edge Gateway | =11.2.1 | |
F5 Big-ip Edge Gateway | =11.3.0 | |
F5 Big-ip Global Traffic Manager | =11.0.0 | |
F5 Big-ip Global Traffic Manager | =11.1.0 | |
F5 Big-ip Global Traffic Manager | =11.2.0 | |
F5 Big-ip Global Traffic Manager | =11.2.1 | |
F5 Big-ip Global Traffic Manager | =11.3.0 | |
F5 Big-ip Global Traffic Manager | =11.4.0 | |
F5 Big-ip Link Controller | =11.0.0 | |
F5 Big-ip Link Controller | =11.1.0 | |
F5 Big-ip Link Controller | =11.2.0 | |
F5 Big-ip Link Controller | =11.2.1 | |
F5 Big-ip Link Controller | =11.3.0 | |
F5 Big-ip Link Controller | =11.4.0 | |
F5 Big-ip Link Controller | =11.4.1 | |
F5 Big-ip Local Traffic Manager | =11.0.0 | |
F5 Big-ip Local Traffic Manager | =11.1.0 | |
F5 Big-ip Local Traffic Manager | =11.2.0 | |
F5 Big-ip Local Traffic Manager | =11.2.1 | |
F5 Big-ip Local Traffic Manager | =11.3.0 | |
F5 Big-ip Local Traffic Manager | =11.4.0 | |
F5 Big-ip Local Traffic Manager | =11.4.1 | |
F5 Big-ip Policy Enforcement Manager | =11.3.0 | |
F5 Big-ip Policy Enforcement Manager | =11.4.0 | |
F5 Big-ip Policy Enforcement Manager | =11.4.1 | |
F5 Big-ip Protocol Security Module | =11.0.0 | |
F5 Big-ip Protocol Security Module | =11.1.0 | |
F5 Big-ip Protocol Security Module | =11.2.0 | |
F5 Big-ip Protocol Security Module | =11.2.1 | |
F5 Big-ip Protocol Security Module | =11.3.0 | |
F5 Big-ip Protocol Security Module | =11.4.0 | |
F5 Big-ip Protocol Security Module | =11.4.1 | |
F5 Big-ip Wan Optimization Manager | =11.0.0 | |
F5 Big-ip Wan Optimization Manager | =11.1.0 | |
F5 Big-ip Wan Optimization Manager | =11.2.0 | |
F5 Big-ip Wan Optimization Manager | =11.2.1 | |
F5 Big-ip Wan Optimization Manager | =11.3.0 | |
F5 Big-ip Webaccelerator | =11.0.0 | |
F5 Big-ip Webaccelerator | =11.1.0 | |
F5 Big-ip Webaccelerator | =11.2.0 | |
F5 Big-ip Webaccelerator | =11.2.1 | |
F5 Big-ip Webaccelerator | =11.3.0 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.