CVE-2014-2949

Currently unrated

Key Information:

Vendor: F5
Status: Arx Data Manager
Vendor: CVE Published:; 18 June 2014

Summary

SQL injection vulnerability in the web service in F5 ARX Data Manager 3.0.0 through 3.1.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.

References

http://support.f5.com/kb/en-us/solutions/public/15000/300...

x_refsource_CONFIRM

http://www.zerodayinitiative.com/advisories/ZDI-14-293/

x_refsource_MISC

http://www.securityfocus.com/bid/68078

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jun 18, 2014
Vulnerability Reserved
Apr 21, 2014