Attacker Value
Unknown
CVE-2014-2928
Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
MITRE ATT&CK
Log in to add MITRE ATT&CK tag
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Metasploit Module
Description
The iControl API in F5 BIG-IP LTM, APM, ASM, GTM, Link Controller, and PSM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, BIG-IP AAM 11.4.0 through 11.5.1, BIG-IP AFM and PEM 11.3.0 through 11.5.1, BIG-IP Analytics 11.0.0 through 11.5.1, BIG-IP Edge Gateway, WebAccelerator, WOM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, Enterprise Manager 2.1.0 through 2.3.0 and 3.0.0 through 3.1.1, and BIG-IQ Cloud, Device, and Security 4.0.0 through 4.3.0 allows remote administrators to execute arbitrary commands via shell metacharacters in the hostname element in a SOAP request.
Add Assessment
No one has assessed this topic. Be the first to add your voice to the community.
CVSS V3 Severity and Metrics
Data provided by the National Vulnerability Database (NVD)
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown
General Information
Vendors
Products
- big-ip access policy manager 10.1.0,
- big-ip access policy manager 10.2.0,
- big-ip access policy manager 10.2.1,
- big-ip access policy manager 10.2.2,
- big-ip access policy manager 11.0.0,
- big-ip application security manager 10.0.0,
- big-ip application security manager 10.0.1,
- big-ip application security manager 10.1.0,
- big-ip application security manager 10.2.0,
- big-ip application security manager 10.2.1,
- big-ip application security manager 10.2.2,
- big-ip application security manager 11.0.0,
- big-ip edge gateway 10.1.0,
- big-ip edge gateway 10.2.0,
- big-ip edge gateway 10.2.1,
- big-ip edge gateway 10.2.2,
- big-ip edge gateway 11.0.0,
- big-ip global traffic manager 10.0.0,
- big-ip global traffic manager 10.0.1,
- big-ip global traffic manager 10.1.0,
- big-ip global traffic manager 10.2.0,
- big-ip global traffic manager 10.2.1,
- big-ip global traffic manager 10.2.2,
- big-ip global traffic manager 11.0.0,
- big-ip link controller 10.0.0,
- big-ip link controller 10.0.1,
- big-ip link controller 10.1.0,
- big-ip link controller 10.2.0,
- big-ip link controller 10.2.1,
- big-ip link controller 10.2.2,
- big-ip link controller 11.0.0,
- big-ip local traffic manager 10.0.0,
- big-ip local traffic manager 10.0.1,
- big-ip local traffic manager 10.1.0,
- big-ip local traffic manager 10.2.0,
- big-ip local traffic manager 10.2.1,
- big-ip local traffic manager 10.2.2,
- big-ip local traffic manager 11.0.0,
- big-ip protocol security module 10.0.0,
- big-ip protocol security module 10.0.1,
- big-ip protocol security module 10.1.0,
- big-ip protocol security module 10.2.0,
- big-ip protocol security module 10.2.1,
- big-ip protocol security module 10.2.2,
- big-ip protocol security module 10.2.3,
- big-ip protocol security module 10.2.4,
- big-ip protocol security module 11.0.0,
- big-ip protocol security module 11.1.0,
- big-ip protocol security module 11.2.0,
- big-ip protocol security module 11.2.1,
- big-ip protocol security module 11.3.0,
- big-ip protocol security module 11.4.0,
- big-ip protocol security module 11.4.1,
- big-ip protocol security module 9.4.5,
- big-ip protocol security module 9.4.6,
- big-ip protocol security module 9.4.7,
- big-ip protocol security module 9.4.8,
- big-ip wan optimization manager 10.0.0,
- big-ip wan optimization manager 10.0.1,
- big-ip wan optimization manager 10.1.0,
- big-ip wan optimization manager 10.2.0,
- big-ip wan optimization manager 10.2.1,
- big-ip wan optimization manager 10.2.2,
- big-ip wan optimization manager 11.0.0,
- big-ip webaccelerator 10.0.0,
- big-ip webaccelerator 10.0.1,
- big-ip webaccelerator 10.1.0,
- big-ip webaccelerator 10.2.0,
- big-ip webaccelerator 10.2.1,
- big-ip webaccelerator 10.2.2,
- big-ip webaccelerator 10.2.3,
- big-ip webaccelerator 10.2.4,
- big-ip webaccelerator 11.0.0,
- big-ip webaccelerator 11.1.0,
- big-ip webaccelerator 11.2.0,
- big-ip webaccelerator 11.2.1,
- big-ip webaccelerator 11.3.0,
- big-ip webaccelerator 9.4.0,
- big-ip webaccelerator 9.4.1,
- big-ip webaccelerator 9.4.2,
- big-ip webaccelerator 9.4.3,
- big-ip webaccelerator 9.4.4,
- big-ip webaccelerator 9.4.5,
- big-ip webaccelerator 9.4.6,
- big-ip webaccelerator 9.4.7,
- big-ip webaccelerator 9.4.8
Metasploit Modules
References
