CVE-2024-23607
published 2024-02-14CVE-2024-23607: A directory traversal vulnerability exists in the F5OS QKView utility that allows an authenticated attacker to read files outside the QKView directory. Note…
medium5.5CVSS 3.1
AVLACLPRLUINSUCHINAN
A directory traversal vulnerability exists in the F5OS QKView utility that allows an authenticated attacker to read files outside the QKView directory. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | f5os | — | — |
| f5 | f5os-a | — | — |
| f5 | f5os-a | >= 1.3.0 < 1.4.0 | 1.4.0 |
| f5 | f5os-c | — | — |
| f5 | f5os-c | >= 1.3.0 < 1.6.0 | 1.6.0 |
| f5 | f5os_appliance | >= 1.3.0 < 1.4.0 | 1.4.0 |
| f5 | f5os_chassis | >= 1.3.0 < 1.6.0 | 1.6.0 |