mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-06-01 11:11:27 +00:00
884 lines
33 KiB
JSON
884 lines
33 KiB
JSON
{
|
|
"id": "CVE-2023-41373",
|
|
"sourceIdentifier": "f5sirt@f5.com",
|
|
"published": "2023-10-10T13:15:21.227",
|
|
"lastModified": "2023-10-17T20:15:51.720",
|
|
"vulnStatus": "Analyzed",
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "\nA directory traversal vulnerability exists in the BIG-IP Configuration Utility that may allow an authenticated attacker to execute commands on the BIG-IP system. For BIG-IP system running in Appliance mode, a successful exploit can allow the attacker to cross a security boundary.\u00a0\n\nNote: Software versions which have reached End of Technical Support (EoTS) are not evaluated.\n\n"
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Existe una vulnerabilidad de directory traversal en la utilidad de configuraci\u00f3n BIG-IP que puede permitir que un atacante autenticado ejecute comandos en el sistema BIG-IP. Para el sistema BIG-IP que se ejecuta en modo Dispositivo, un exploit exitoso puede permitir al atacante cruzar un l\u00edmite de seguridad. Nota: Las versiones de software que han llegado al End of Technical Support (EoTS) no se eval\u00faan."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV31": [
|
|
{
|
|
"source": "f5sirt@f5.com",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "3.1",
|
|
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H",
|
|
"attackVector": "NETWORK",
|
|
"attackComplexity": "LOW",
|
|
"privilegesRequired": "LOW",
|
|
"userInteraction": "NONE",
|
|
"scope": "CHANGED",
|
|
"confidentialityImpact": "HIGH",
|
|
"integrityImpact": "HIGH",
|
|
"availabilityImpact": "HIGH",
|
|
"baseScore": 9.9,
|
|
"baseSeverity": "CRITICAL"
|
|
},
|
|
"exploitabilityScore": 3.1,
|
|
"impactScore": 6.0
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-22"
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"source": "f5sirt@f5.com",
|
|
"type": "Secondary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "CWE-22"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "D93F04AD-DF14-48AB-9F13-8B2E491CF42E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "4C36A0C6-7E2E-499C-8237-0CCD729BE2C4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "05826F49-DAF1-42A4-BC75-40CAE06AA81A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "92F10A0D-A487-4B2A-ADF7-4AB3C5A98001"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "33A3F0F2-4154-4E72-8E35-26D8A9E70BA3"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "6603ED6A-3366-4572-AFCD-B3D4B1EC7606"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "3C91DF3D-6F75-4A5C-A189-E900B24B96EF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "EC288C8B-91D5-45F6-B7C8-7621FDFB9FDB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "2ADC24ED-14A3-4F96-A6DA-5A2FDC60A71B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "D2451792-A917-44B7-9DEF-07FD4F1FF9D9"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "922AA845-530A-4B4B-9976-4CBC30C8A324"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "43DD0BCE-ABC7-42D9-8D7A-827F43860644"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "3718FFC7-7DD6-4875-A8EC-0202422F6FB4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "C175FBF7-CF8D-48C2-B604-AC766AE3ECAD"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "E450EA1E-3B71-4AD0-8A7B-1DF9ACB63F0A"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "08B25AAB-A98C-4F89-9131-29E3A8C0ED23"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "5898B0EF-5633-42FC-93C9-7B6E529F3561"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "FD3D6684-794C-4FDE-A476-53083F1ABB64"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "69DE4021-B15C-4310-8898-E4EC3EC0DA60"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "3E7B2690-C2D9-4600-828F-10D05876E62B"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "0360F76D-E75E-4B05-A294-B47012323ED9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "BA02CCB1-9B59-480A-9D2F-19A081C323EE"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "1BC44AD6-B321-4793-BB64-ED6478ED71F4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "04ABC7AA-1D2D-4954-863B-A417794B1F5B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "E6D5C2FC-CBF9-4012-92F9-0616558EFB87"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "05E452AA-A520-4CBE-8767-147772B69194"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "7CBDE0A3-26CA-47D4-A3CC-C0D682681692"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "FECB5450-065D-40BE-BFFF-466741E0C3A4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "E42EBA0A-EC53-4885-9AFD-AFF83224214C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "B6EBB17E-41FF-4C5C-A4A1-93C8B5884EBD"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "9167FEC1-2C37-4946-9657-B4E69301FB24"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "D8501E47-E208-48B6-A0A4-ED6AFE2342CD"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "B3D80331-F4B4-4232-BD55-803D6209B9B0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "5E49638F-30AA-4112-8F6F-13F013F9E72B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "22366BB6-59D3-473D-A900-88E181BE5B8F"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "7EC2324D-EC8B-41DF-88A7-819E53AAD0FC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "87FAADF1-D2F3-4763-8C0E-AC84717E9D05"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "CD61929B-5CED-44EE-910D-8CC09184E0F0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "3823874E-B0C1-4F7B-B1E7-1423C371E79C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "769C6FB7-8C9E-4D3D-B12A-473B6F0BDFAA"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "C7E422F6-C4C2-43AC-B137-0997B5739030"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "6BC37842-1425-4478-9293-F714F3D4282D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "5DE6A6A8-CE64-4AE2-B12D-E72CE05FEC53"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "C509C00E-2C92-4905-BD2D-22B5BDDDE4EE"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "4BF60D00-4EB4-4DCC-BCFB-0E6E220DFC06"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "4C9FCBCB-9CE0-49E7-85C8-69E71D211912"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "020A87EC-010F-4D7A-B478-E8703B21E5B0"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "AD9109FE-795F-4727-8157-348A0DB505FD"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "FAD1751B-9818-474E-B970-719CE1AEA782"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "4CA2EF79-D15B-404D-8E7F-56215CBD383E"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "CAEF3EA4-7D5A-4B44-9CE3-258AEC745866"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "F8694BB1-814A-4460-B37B-4A57CD01BB4F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "08654535-66B2-42EB-BA69-E7120694E6C2"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "9A519F4C-D469-47A0-9F61-2EE33976177D"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "F02AFC93-31CE-453F-8277-5BA2A950F036"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "E3D2ABA3-D4A9-4267-B0DF-7C3BBEEAEB66"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "34EF3612-A6B8-4B15-956E-78FB521F154F"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "1321B2E9-A7A6-4AE2-9B73-453B81E517FB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "67CAB7BF-AC42-4957-9F8F-59CACA30D0A3"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "16FBDFCC-81A6-47D2-986D-D042CEBA3440"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "E6018B01-048C-43BB-A78D-66910ED60CA9"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "78522028-7E6A-45D5-A704-6043E5DCA79A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "792C533A-36AB-4161-AC80-69A195FFDF2A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "11EA68F6-028C-4A63-AFB6-0B6F36F5EB8C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "E5C43DB5-8396-4073-BA3C-D8983C87B921"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "D9EC2237-117F-43BD-ADEC-516CF72E04EF"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "70F04F73-E72B-4FDB-AEB6-756C4DF0E45B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "D9C581F2-76D7-45B0-9F81-C678BD9071C1"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "16657185-FDAA-4DF4-A2A1-1B5BAF8697FB"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "93991114-2C3F-4C46-BCF4-EE7F99EE886F"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "8257AA59-C14D-4EC1-B22C-DFBB92CBC297"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "4E7B9B26-C38A-49A7-A2C9-F2EF2969ABE2"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "46384B09-5E14-4BEC-B433-9803A59B805C"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "957276C7-DA88-44F1-AB18-AA39DC1BF9B4"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "52FE31B8-7E0F-40A9-9042-6DA1A5F27894"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "8A6F9699-A485-4614-8F38-5A556D31617E"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "24CA6F7A-03A5-47B6-8FED-1A97863ED527"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "5FC43804-920D-49EB-B2B3-3F353BD8E24B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "D6D0A641-7EF3-4F9E-9503-4A202E04102A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "1AEFFF75-3DA0-4D71-BC62-9E0081F5E006"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "1932D32D-0E4B-4BBD-816F-6D47AB2E2F04"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "BCB3E253-A9F2-426C-B790-DF90BC7C3367"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "D8D51FD0-D67E-44CC-9803-108FC8327D02"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "095E5580-CF33-45EB-90DB-1EB4F0C0DFCA"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "0ED65CB7-2567-470D-A675-7A32797921B9"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "13.1.0",
|
|
"versionEndIncluding": "13.1.5",
|
|
"matchCriteriaId": "5326759A-AFB0-4A15-B4E9-3C9A2E5DB32A"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "14.1.0",
|
|
"versionEndExcluding": "14.1.5.6",
|
|
"matchCriteriaId": "90CF685F-F17D-48B0-927A-95CFE0AE967B"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "15.1.0",
|
|
"versionEndExcluding": "15.1.10.2",
|
|
"matchCriteriaId": "45418FC7-11BE-48B8-9827-00F8C0964BCC"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "16.1.0",
|
|
"versionEndExcluding": "16.1.4.1",
|
|
"matchCriteriaId": "D097C6A6-5C8D-4275-B0CD-3947E11AA5B1"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*",
|
|
"versionStartIncluding": "17.1.0",
|
|
"versionEndExcluding": "17.1.0.3",
|
|
"matchCriteriaId": "CDCCECC1-ED27-45DE-AFEF-DBA30EF5FE91"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "https://my.f5.com/manage/s/article/K000135689",
|
|
"source": "f5sirt@f5.com",
|
|
"tags": [
|
|
"Vendor Advisory"
|
|
]
|
|
}
|
|
]
|
|
} |