CVE-2021-23040 – On BIG-IP AFM version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2 …

14 September 2021

Vuln ID: CVE-2021-23040

Published: 2021-09-14 15:15:06Z

Description: On BIG-IP AFM version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.x before 13.1.4.1, and all versions of 12.1.x, a SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. This issue is exposed only when BIG-IP AFM is provisioned. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Source: NVD.NIST.GOV

Date:

14 September 2021

Categorie(s):

NVD

Tag(s):

NVD

Entrust protects users against fraud, phishing and other account takeover attacks23 April 2024
New Oleria service aims to tackle modern identity challenges in cybersecurity23 April 2024
Passwords, passkeys and familiarity bias23 April 2024
Netwrix 1Secure enhancements accelerate threat detection23 April 2024
GitHub Comments Abused to Spread Malware in Fake Microsoft Repositories23 April 2024