Arbitrary File Access Vulnerability in F5 BIG-IP and Enterprise Manager

Arbitrary File Access Vulnerability in F5 BIG-IP and Enterprise Manager

CVE-2015-4040 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the web root via unspecified vectors.

Learn more about our Cis Benchmark Audit For F5.