A vulnerability, which was classified as critical, was found in F5 BIG-IP Advanced WAF and BIG-IP ASM up to 16.0.1 (Firewall Software). This affects some unknown functionality of the component TMUI/Configuration Utility. Upgrading to version 11.6.5.3, 12.1.6, 13.1.4, 14.1.4.1, 15.1.3, 16.0.1.2 or 16.1.0 eliminates this vulnerability.
F5 BIG-IP Advanced WAF/BIG-IP ASM up to 16.0.1 TMUI/Configuration Utility Privilege Escalation
- Virtual Patching
- August 26, 2021
- 9:04 am
Contact us to get started
CVE-2023-33553 : PLANET WDRT-1800AX 1.01-CP2 COOKIE LOGINSTATUS IMPROPER AUTHENTICATION
Description An issue in Planet Technologies WDRT-1800AX v1.01-CP21 allows attackers to bypass authentication and escalate privileges to root via manipulation
CVE-2023-20887 : VMWARE ARIA OPERATIONS FOR NETWORKS 6.X COMMAND INJECTION
Description Aria Operations for Networks contains a command injection vulnerability. A malicious actor with network access to VMware Aria Operations
CVE-2023-29632 : JMSPAGEBUILDER 3.X ON PRESTASHOP AJAX_JMSPAGEBUILDER.PHP SQL INJECTION
Description PrestaShop jmspagebuilder 3.x is vulnerable to SQL Injection via ajax_jmspagebuilder.php. References https://friends-of-presta.github.io/security-advisories/modules/2023/03/13/jmspagebuilder.html For More Information MITRE