CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

F5: >> Big-Ip Application Security Manager >> 9.6.0 Security Vulnerabilities

CVE-2015-4040

Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the web root via unspecified vectors.

CVSS Score

4.0

EPSS Score

0.068

Published

2015-09-17

CVE-2015-1050

Cross-site scripting (XSS) vulnerability in F5 BIG-IP Application Security Manager (ASM) before 11.6 allows remote attackers to inject arbitrary web script or HTML via the Response Body field when creating a new user account.

CVSS Score

4.3

EPSS Score

0.003

Published

2015-01-15

Page 1

Vulnerabilities

Vulnerable Software

F5: >> Big-Ip Application Security Manager >> 9.6.0 Security Vulnerabilities

Products

Pricing

Contact Us