Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
F5 BIG-IP before 12.0.0 HF3 allows remote authenticated users to modify the account configuration of users with the Resource Administration role and gain privilege via a crafted external Extended Application Verification (EAV) monitor script.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款F5 BIG-IP产品提权漏洞
Vulnerability Description
F5 BIG-IP LTM等都是美国F5公司的产品。LTM是一款本地流量管理器;GTM是一款广域流量管理器;WebAccelerator是一款应用加速器。 多款F5 BIG-IP产品中存在提权漏洞。远程攻击者可借助恶意的外部EAV监听脚本利用该漏洞以Resource Administration角色修改用户账户配置,获取权限。以下产品及版本受到影响:F5 BIG-IP LTM、ASM、Link Controller 12.0.0版本,11.4.0版本至11.6.1版本,11.2.1版本,10.2.1版本至
CVSS Information
N/A
Vulnerability Type
N/A