CyberSec.Space Logo
返回 CVE 浏览器

CVE-2021-23029

HIGH
8.8
CVSS Severity Score
EPSS Score0.0050%
EPSS Percentile37.61th
Published2021年9月14日
Last Modified2024年11月21日

Vulnerability Description

On version 16.0.x before 16.0.1.2, insufficient permission checks may allow authenticated users with guest privileges to perform Server-Side Request Forgery (SSRF) attacks through F5 Advanced Web Application Firewall (WAF) and the BIG-IP ASM Configuration utility. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected Platforms (CPE)

📦
F5

Big Ip Advanced Web Application Firewall

>= 16.0.0 and < 16.0.1.2
📦
F5

Big Ip Application Security Manager

>= 16.0.0 and < 16.0.1.2

References & Advisories

🔗 https://support.f5.com/csp/article/K52420610
🔗 https://support.f5.com/csp/article/K52420610

相关漏洞威胁

CVE-2021-230287.5

On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.2, and 13.1.x before 13.1.4, when JSON content pro...

CVE-2026-121917.8

A vulnerability was found in Comma AI Openpilot 0.11. This issue affects the function pickle.load/pickle.loads of the file selfdri...

CVE-2026-121905.3

A vulnerability has been found in Genspark AI Workspace App 2.8.4 on Android. This vulnerability affects unknown code of the compo...

CVE-2026-121895.3

A flaw has been found in Moovit Bus & Public Transit App 1.18 on Android. This affects an unknown part of the component com.tranzm...