CVE-2013-6024

CWE-200 — Information Exposure3 documents3 sources

Severity

4.4MEDIUM

EPSS

0.1%

top 77.39%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F5 Big-ip Access Policy Manager F5 Big-ip Edge Gateway F5 Firepass

Timeline

PublishedFeb 10

Latest updateMay 14

Description

The Edge Client components in F5 BIG-IP APM 10.x, 11.x, 12.x, 13.x, and 14.x, BIG-IP Edge Gateway 10.x and 11.x, and FirePass 7.0.0 allow attackers to obtain sensitive information from process memory via unspecified vectors.

CVSS vector

AV:L/AC:M/C:C/I:N/A:NExploitability: 2.7 | Impact: 6.9

Affected Packages3 packages

▶NVDf5/big-ip_edge_gateway4 versions+3

▶NVDf5/firepass6.0.0, 6.1.0, 7.0.0+2

▶NVDf5/big-ip_access_policy_manager7 versions+6

🔴Vulnerability Details

GHSA

GHSA-g8v6-98vr-2hm4: The Edge Client components in F5 BIG-IP APM 10↗2022-05-14

▶

CVEList

CVE-2013-6024: The Edge Client components in F5 BIG-IP APM 10↗2014-02-10

▶