Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2014-9326

The automatic signature update functionality in the (1) Phone Home feature in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, and Link Controller 11.5.0 through 11.6.0, ASM 10.0.0 through 11.6.0, and PEM 11.3.0 through 11.6.0 and the (2) Call Home feature in ASM 10.0.0 through 11.6.0 and PEM 11.3.0 through 11.6.0 does not properly validate server SSL certificates, which allows remote attackers to conduct man-in-the-middle attacks via a crafted certificate.

  • Published: May 12, 2015
  • Updated: Apr 13, 2023
  • CVE: CVE-2014-9326
  • Severity: Low
  • Exploit:

CVSS v2:

  • Severity: Low
  • Score: 4.3
  • AV:N/AC:M/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
f5 / big-ip_application_acceleration_manager 11.5.2 11.5.2.x
f5 / big-ip_application_acceleration_manager 11.5.1 11.5.1.x
f5 / big-ip_application_acceleration_manager 11.6.0 11.6.0.x
f5 / big-ip_application_acceleration_manager 11.5.0 11.5.0.x
f5 / big-ip_policy_enforcement_manager11.5.1 - -
f5 / big-ip_policy_enforcement_manager 11.5.2 11.5.2.x
f5 / big-ip_policy_enforcement_manager 11.5.0 11.5.0.x
f5 / big-ip_policy_enforcement_manager 11.4.0 11.4.0.x
f5 / big-ip_policy_enforcement_manager 11.4.1 11.4.1.x
f5 / big-ip_policy_enforcement_manager 11.3.0 11.3.0.x
f5 / big-ip_policy_enforcement_manager 11.6.0 11.6.0.x
f5 / big-ip_global_traffic_manager 11.5.1 11.5.1.x
f5 / big-ip_global_traffic_manager 11.6.0 11.6.0.x
f5 / big-ip_global_traffic_manager 11.5.2 11.5.2.x
f5 / big-ip_global_traffic_manager 11.5.0 11.5.0.x
f5 / big-ip_advanced_firewall_manager 11.5.2 11.5.2.x
f5 / big-ip_advanced_firewall_manager 11.6.0 11.6.0.x
f5 / big-ip_advanced_firewall_manager 11.5.0 11.5.0.x
f5 / big-ip_advanced_firewall_manager 11.5.1 11.5.1.x
f5 / big-ip_local_traffic_manager 11.6.0 11.6.0.x
f5 / big-ip_local_traffic_manager 11.5.1 11.5.1.x
f5 / big-ip_local_traffic_manager 11.5.2 11.5.2.x
f5 / big-ip_local_traffic_manager 11.5.0 11.5.0.x
f5 / big-ip_application_security_manager 11.5.1 11.5.1.x
f5 / big-ip_application_security_manager 11.6.0 11.6.0.x
f5 / big-ip_application_security_manager 11.5.0 11.5.0.x
f5 / big-ip_application_security_manager 11.5.2 11.5.2.x
f5 / big-ip_link_controller 11.5.1 11.5.1.x
f5 / big-ip_link_controller 11.5.2 11.5.2.x
f5 / big-ip_link_controller 11.5.0 11.5.0.x
f5 / big-ip_link_controller 11.6.0 11.6.0.x
f5 / big-ip_access_policy_manager 11.5.2 11.5.2.x
f5 / big-ip_access_policy_manager 11.5.0 11.5.0.x
f5 / big-ip_access_policy_manager 11.5.1 11.5.1.x
f5 / big-ip_access_policy_manager 11.6.0 11.6.0.x
f5 / big-ip_analytics 11.6.0 11.6.0.x
f5 / big-ip_analytics 11.5.2 11.5.2.x
f5 / big-ip_analytics 11.5.1 11.5.1.x
f5 / big-ip_analytics 11.5.0 11.5.0.x