F5 Networks BIG-IP : BIG-IP management interface vulnerability (SOL9875)

high Nessus Plugin ID 78230

Language:

Synopsis

The remote device is missing a vendor-supplied security patch.

Description

The remote BIG-IP device is missing a patch required by a security advisory.

Solution

Upgrade to one of the non-vulnerable versions listed in the F5 Solution SOL9875.

Plugin Details

Severity: High

ID: 78230

File Name: f5_bigip_SOL9875.nasl

Version: 1.9

Type: local

Family: F5 Networks Local Security Checks

Published: 10/10/2014

Updated: 1/11/2021

Supported Sensors: Nessus

Risk Information

CVSS v2

Risk Factor: High

Base Score: 9

Temporal Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:S/C:C/I:C/A:C

Vulnerability Information

CPE: cpe:/a:f5:big-ip_application_security_manager, cpe:/a:f5:big-ip_global_traffic_manager, cpe:/a:f5:big-ip_link_controller, cpe:/a:f5:big-ip_local_traffic_manager, cpe:/a:f5:big-ip_webaccelerator, cpe:/h:f5:big-ip

Required KB Items: Host/local_checks_enabled, Host/BIG-IP/hotfix, Host/BIG-IP/modules, Host/BIG-IP/version

Exploit Ease: No known exploits are available

Patch Publication Date: 3/19/2009

Reference Information

CVE: CVE-2008-6474

BID: 28639

CWE: 94

Detections

Analytics