A directory traversal vulnerability exists in an undisclosed page of the BIG-IP Configuration utility which may allow an authenticated attacker to read files with .xml extension. Access to restricted information is limited and the attacker does not control what information is obtained.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: f5

Published: 2023-05-03T14:34:00.796Z

Updated: 2024-08-02T12:38:25.151Z

Reserved: 2023-04-14T23:08:02.581Z

Link: CVE-2023-28406

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2023-05-03T15:15:12.720

Modified: 2024-11-21T07:55:00.243

Link: CVE-2023-28406

cve-icon Redhat

No data.