More information about this CVE will likely be available in a few days.


On BIG-IP AFM version 16.0.x before, 15.1.x before 15.1.3, 14.1.x before, 13.1.x before, and all versions of 12.1.x, a SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. This issue is exposed only when BIG-IP AFM is provisioned. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Related CPE's

Could not find any relations

CvssV3 impact

Could not find any metrics

CvssV2 impact

Could not find any metrics