CVE-2013-6024

Опубликовано: 10 фев. 2014

Источник: nvd

CVSS2: 4.4

EPSS Низкий

Описание

The Edge Client components in F5 BIG-IP APM 10.x, 11.x, 12.x, 13.x, and 14.x, BIG-IP Edge Gateway 10.x and 11.x, and FirePass 7.0.0 allow attackers to obtain sensitive information from process memory via unspecified vectors.

Ссылки

http://support.f5.com/kb/en-us/solutions/public/14000/900/sol14969.html
Vendor Advisory
http://www.kb.cert.org/vuls/id/146430
US Government Resource
http://www.securityfocus.com/bid/65422
https://support.f5.com/csp/article/K14969
http://support.f5.com/kb/en-us/solutions/public/14000/900/sol14969.html
Vendor Advisory
http://www.kb.cert.org/vuls/id/146430
US Government Resource
http://www.securityfocus.com/bid/65422
https://support.f5.com/csp/article/K14969

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:f5:big-ip_access_policy_manager:10.1.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_access_policy_manager:10.2.4:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_access_policy_manager:11.0.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_access_policy_manager:11.1.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_access_policy_manager:11.2.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_access_policy_manager:11.2.1:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_access_policy_manager:11.3.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_edge_gateway:10.1.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_edge_gateway:10.2.4:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_edge_gateway:11.0.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:big-ip_edge_gateway:11.5.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:firepass:6.0.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:firepass:6.1.0:*:*:*:*:*:*:*

cpe:2.3:a:f5:firepass:7.0.0:*:*:*:*:*:*:*

cpe:2.3:h:f5:big-ip_access_policy_manager:10.1.0:*:*:*:*:*:*:standalone

cpe:2.3:h:f5:big-ip_access_policy_manager:10.2.4:*:*:*:*:*:*:standalone

cpe:2.3:h:f5:big-ip_access_policy_manager:11.0.0:*:*:*:*:*:*:standalone

cpe:2.3:h:f5:big-ip_access_policy_manager:11.1.0:*:*:*:*:*:*:standalone

cpe:2.3:h:f5:big-ip_access_policy_manager:11.2.0:*:*:*:*:*:*:standalone

cpe:2.3:h:f5:big-ip_access_policy_manager:11.2.1:*:*:*:*:*:*:standalone

cpe:2.3:h:f5:big-ip_access_policy_manager:11.3.0:*:*:*:*:*:*:standalone

EPSS

Процентиль: 23%

0.00075

Низкий

4.4 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-g8v6-98vr-2hm4

github

больше 3 лет назад