CVE-2018-15333
N/A
N/A
Summary
On versions 11.2.1. and greater, unrestricted Snapshot File Access allows BIG-IP system's user with any role, including Guest Role, to have access and download previously generated and available snapshot files on the BIG-IP configuration utility such as QKView and TCPDumps.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| F5 Networks, Inc. | BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) | All versions 11.2.1+ | affected |
Weaknesses
- Information Leakage
ADP Enrichment
CVE Program Container
Additional References
- https://support.f5.com/csp/article/K53620021
- http://www.securityfocus.com/bid/106380
- https://support.f5.com/csp/article/K53620021?utm_source=f5support&%3Butm_medium=RSS
References
- https://support.f5.com/csp/article/K53620021
- http://www.securityfocus.com/bid/106380
- https://support.f5.com/csp/article/K53620021?utm_source=f5support&%3Butm_medium=RSS
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.