VYPR
Unrated severityNVD Advisory· Published May 10, 2021· Updated Aug 3, 2024

CVE-2021-23015

CVE-2021-23015

Description

On BIG-IP 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.0.8 through 13.1.3.6, and all versions of 16.0.x, when running in Appliance Mode, an authenticated user assigned the 'Administrator' role may be able to bypass Appliance Mode restrictions utilizing undisclosed iControl REST endpoints. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected products

1
  • F5, Inc./Big IPllm-fuzzy
    Range: 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.0.8 through 13.1.3.6, all 16.0.x

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.