Unrated severityNVD Advisory· Published Jul 16, 2015· Updated Jun 17, 2026
CVE-2015-4637
CVE-2015-4637
Description
The REST API in F5 BIG-IQ Cloud, Device, and Security 4.4.0 and 4.5.0 before HF2 and ADC 4.5.0 before HF2, when configured for LDAP remote authentication and the LDAP server allows anonymous BIND operations, allows remote attackers to obtain an authentication token for arbitrary users by guessing an LDAP user account name.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- support.f5.com/kb/en-us/solutions/public/16000/800/sol16861.htmlnvdVendor Advisory
News mentions
0No linked articles in our index yet.