XML External Entity (XXE) vulnerability in sam/admin/vpe2/public/php/server.php in F5 BIG-IP 10.0.0 through 10.2.4 and 11.0.0 through 11.2.1 allows remote authenticated users to read arbitrary files via a crafted XML file.
References
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2014-01-21 18:55
Updated : 2024-02-28 12:20
NVD link : CVE-2012-2997
Mitre link : CVE-2012-2997
CVE.ORG link : CVE-2012-2997
JSON object : View
Products Affected
f5
- big-ip_configuration_utility
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor