CVE-2014-2949
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Ver en NVDSeveridad
N/A
EPSS
Probabilidad de explotación (próx. 30 días): 0.0049 (0.5%)
Percentil: 65.4%
EPSS: 2026-05-06
Afecta
f5:arx_data_managerDescripción técnica
SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Publicada: 18/6/2014, 16:55:07
Última modificación: 6/5/2026, 22:30:45
Referencias
- http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15310.html?sr=38021626
- http://www.kb.cert.org/vuls/id/210884
- http://www.securityfocus.com/bid/68078
- http://www.zerodayinitiative.com/advisories/ZDI-14-293/
- http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15310.html?sr=38021626
- http://www.kb.cert.org/vuls/id/210884
- http://www.securityfocus.com/bid/68078
- http://www.zerodayinitiative.com/advisories/ZDI-14-293/