Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
In some situations on BIG-IP APM 14.0.0-14.0.0.2, 13.0.0-13.1.0.7, 12.1.0-12.1.3.5, or 11.6.0-11.6.3.2, the CRLDP Auth access policy agent may treat revoked certificates as valid when the BIG-IP APM system fails to download a new Certificate Revocation List.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
F5 BIG-IP Access Policy Manager 安全漏洞
Vulnerability Description
F5 BIG-IP Access Policy Manager(APM)是美国F5公司的一套访问和安全解决方案。该解决方案提供统一访问关键业务应用和网络的功能。 F5 BIG-IP APM中存在安全漏洞,该漏洞源于在BIG-IP APM系统无法下载新的证书撤销列表时,CRLDP Auth访问策略代理可能将撤销的证书识别成有效证书。攻击者可利用该漏洞获取系统的访问权限。以下版本受到影响:F5 BIG-IP APM 14.0.0版本至14.0.0.2版本,13.0.0版本至13.1.0.7版本,12.1.0版
CVSS Information
N/A
Vulnerability Type
N/A