SQL Injection Vulnerability in F5 ARX Data Manager
CVE-2014-2949

Currently unrated

Key Information:

Vendor
F5
Vendor
CVE Published:
18 June 2014

Summary

A SQL injection vulnerability exists in the web service of F5 ARX Data Manager versions 3.0.0 through 3.1.0. This vulnerability allows remote authenticated users to execute arbitrary SQL commands through unspecified vectors, potentially compromising the confidentiality and integrity of the underlying database. Users and administrators of affected versions are advised to assess their systems and implement necessary security measures to mitigate risks.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.