Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Multiple SQL injection vulnerabilities in sam/admin/reports/php/saveSettings.php in the (1) APM WebGUI in F5 BIG-IP LTM, GTM, ASM, Link Controller, PSM, APM, Edge Gateway, and Analytics and (2) AVR WebGUI in WebAccelerator and WOM 11.2.x before 11.2.0-HF3 and 11.2.x before 11.2.1-HF3 allow remote authenticated users to execute arbitrary SQL commands via the defaultQuery parameter.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 BIG-IP SQL注入漏洞
Vulnerability Description
F5 BIG-IP LTM等都是美国F5公司的产品。LTM是一款本地流量管理器;GTM是一款广域流量管理器;WebAccelerator是一款应用加速器。 多款F5 BIG-IP产品中存在SQL注入漏洞,该漏洞源于sam/admin/reports/php/saveSettings.php脚本没有充分过滤‘defaultQuery’参数。远程攻击者可利用该漏洞执行任意SQL命令。以下产品受到影响:F5 BIG-IP LTM,GTM,ASM,Link Controller,PSM,APM,Edge Gate
CVSS Information
N/A
Vulnerability Type
N/A