CVE-2014-2949
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0049 (0.5%)
Percentile: 65.4%
EPSS: 2026-05-06
Affects
f5:arx_data_managerTechnical description
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Published: 6/18/2014, 4:55:07 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15310.html?sr=38021626
- http://www.kb.cert.org/vuls/id/210884
- http://www.securityfocus.com/bid/68078
- http://www.zerodayinitiative.com/advisories/ZDI-14-293/
- http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15310.html?sr=38021626
- http://www.kb.cert.org/vuls/id/210884
- http://www.securityfocus.com/bid/68078
- http://www.zerodayinitiative.com/advisories/ZDI-14-293/