The Configuration utility in F5 BIG-IP systems 11.0.x, 11.1.x, 11.2.x before 11.2.1 HF16, 11.3.x, 11.4.x before 11.4.1 HF10, 11.5.x before 11.5.4 HF2, 1.6.x before 11.6.1, and 12.0.0 before HF1 allows remote administrators to read Access Policy Manager (APM) access logs via unspecified vectors.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/92671 | |
http://www.securitytracker.com/id/1036631 | Third Party Advisory VDB Entry |
https://support.f5.com/kb/en-us/solutions/public/k/31/sol31925518.html | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
Configuration 3 (hide)
|
Configuration 4 (hide)
|
Configuration 5 (hide)
|
Configuration 6 (hide)
|
Configuration 7 (hide)
|
Configuration 8 (hide)
|
Configuration 9 (hide)
|
Configuration 10 (hide)
|
Configuration 11 (hide)
|
Configuration 12 (hide)
|
Configuration 13 (hide)
|
Configuration 14 (hide)
|
History
No history.
Information
Published : 2016-08-26 14:59
Updated : 2024-02-28 15:21
NVD link : CVE-2016-1497
Mitre link : CVE-2016-1497
CVE.ORG link : CVE-2016-1497
JSON object : View
Products Affected
f5
- big-ip_analytics
- big-ip_link_controller
- big-ip_access_policy_manager
- big-ip_global_traffic_manager
- big-ip_edge_gateway
- big-ip_webaccelerator
- big-ip_advanced_firewall_manager
- big-ip_local_traffic_manager
- big-ip_protocol_security_module
- big-ip_wan_optimization_manager
- big-ip_policy_enforcement_manager
- big-ip_application_security_manager
- big-ip_application_acceleration_manager
- big-ip_domain_name_system
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor