CVE-2017-0302Range Error in F5 Big-ip Access Policy Manager

CWE-118Range Error3 documents3 sources
Severity
5.3MEDIUMNVD
EPSS
0.3%
top 45.48%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
F5 Networks INC Big-ip APMF5 Big-ip Access Policy ManagerF5 Big-ip APM
Timeline
PublishedMay 9
Latest updateMay 17

Description

In F5 BIG-IP APM 12.0.0 through 12.1.2 and 13.0.0, an authenticated user with an established access session to the BIG-IP APM system may be able to cause a traffic disruption if the length of the requested URL is less than 16 characters.

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.6 | Impact: 3.6

Affected Packages3 packages

CVEListV5f5_networks_inc/big-ip_apm12.0.0 - 12.1.2, 13.0.0+1

🔴Vulnerability Details

1
GHSA
GHSA-rhhq-x9p3-xx33: In F5 BIG-IP APM 122022-05-17

📋Vendor Advisories

1
F5
CVE-2017-0302: In F5 BIG-IP APM 122017-05-09
CVE-2017-0302 — Range Error in F5 | cvebase