F5 BIG-IP TMUI Unauthorized Access Vulnerability

2021-08-2600:00:00

China National Vulnerability Database

www.cnvd.org.cn

0.001 Low

EPSS

Percentile

39.7%

JSON

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. The F5 BIG-IP TMUI Unauthorized Access vulnerability can be exploited by an authenticated attacker by sending a crafted request to the BIG-IP configuration utility. If the vulnerability is successfully exploited, an attacker can access arbitrary files in the Web root directory.

CPENameOperatorVersion
f5 big-ip (所有模块) 15.1.0-eq15.1.3
f5 big-ip (所有模块) 14.1.0-eq14.1.4
f5 big-ip (所有模块) 13.1.0-eq13.1.4
f5 big-ip (所有模块) 12.1.0-eq12.1.6
f5 big-ip (所有模块) 11.6.1-eq11.6.5
f5 big-ip (所有模块) 16.0.0-eq16.1.0

Name	Operator	Version
f5 big-ip (所有模块) 15.1.0-	eq	15.1.3
f5 big-ip (所有模块) 14.1.0-	eq	14.1.4
f5 big-ip (所有模块) 13.1.0-	eq	13.1.4
f5 big-ip (所有模块) 12.1.0-	eq	12.1.6
f5 big-ip (所有模块) 11.6.1-	eq	11.6.5
f5 big-ip (所有模块) 16.0.0-	eq	16.1.0

0.001 Low

EPSS

Percentile

39.7%

JSON

Related for CNVD-2021-65642