CVE-2017-0301
N/A
N/A
Summary
In F5 BIG-IP APM software versions 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 and 12.1.2 BIG-IP APM portal access requests do not return the intended resources in some cases. This may allow access to internal BIG-IP APM resources, however the application resources and backend servers are unaffected.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 Networks, Inc. | BIG-IP APM | 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4 | affected |
| F5 Networks, Inc. | BIG-IP APM | 11.6.0, 11.6.1 | affected |
| F5 Networks, Inc. | BIG-IP APM | 12.0.0, 12.1.0, 12.1.1, 12.1.2 | affected |
Weaknesses
- Predictable Resource Location
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.