Search Results (Refine Search)
- CPE Product Version: cpe:/a:f5:big-ip_application_security_manager:9.6.1
Vuln ID | Summary | CVSS Severity |
---|---|---|
CVE-2015-4040 |
Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the web root via unspecified vectors. Published: September 17, 2015; 12:59:01 PM -0400 |
V3.x:(not available) V2.0: 4.0 MEDIUM |
CVE-2015-1050 |
Cross-site scripting (XSS) vulnerability in F5 BIG-IP Application Security Manager (ASM) before 11.6 allows remote attackers to inject arbitrary web script or HTML via the Response Body field when creating a new user account. Published: January 15, 2015; 10:59:30 AM -0500 |
V3.x:(not available) V2.0: 4.3 MEDIUM |