CVE-2015-4040

F5 Enterprise Manager 3.0.0-3.1.1 - Authenticated Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-4040. PoCs published by Karn Ganeshen.

AI-analyzed exploit summary This exploit demonstrates a file path traversal vulnerability in F5 BigIP by manipulating the handler parameter to access sensitive files like WEB-INF/web.xml. The PoC includes a crafted HTTP POST request with traversal sequences to bypass directory restrictions.

Description

Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the web root via unspecified vectors.

Exploits (1)

exploitdb WORKING POC
by Karn Ganeshen · textwebappshardware
https://www.exploit-db.com/exploits/38448

This exploit demonstrates a file path traversal vulnerability in F5 BigIP by manipulating the handler parameter to access sensitive files like WEB-INF/web.xml. The PoC includes a crafted HTTP POST request with traversal sequences to bypass directory restrictions.

Classification
Working Poc 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: F5 BIG-IP 10.2.4 Build 595.0 Hotfix HF3
Auth required
Prerequisites: Authenticated session with valid cookies (JSESSIONID, BIGIPAuthUsernameCookie, BIGIPAuthCookie)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1033533
Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack
http://www.securitytracker.com/id/1033532

Scores

EPSS 0.0676
EPSS Percentile 93.1%

Details

CWE
CWE-22
Status published
Products (16)
f5/big-ip_access_policy_manager < 11.6.0
f5/big-ip_advanced_firewall_manager < 11.6.0
f5/big-ip_analytics < 11.6.0
f5/big-ip_application_acceleration_manager < 11.6.0
f5/big-ip_application_security_manager < 11.6.0
f5/big-ip_edge_gateway < 11.3.0
f5/big-ip_global_traffic_manager < 11.3.0
f5/big-ip_link_controller < 11.3.0
f5/big-ip_local_traffic_manager < 11.6.0
f5/big-ip_policy_enforcement_manager < 11.3.0
... and 6 more
Published Sep 17, 2015
Tracked Since Feb 18, 2026