F5 BIG-IP Resource Management Error Vulnerability (CNVD-2022-77530)

2022-05-0700:00:00

China National Vulnerability Database

www.cnvd.org.cn

0.001 Low

EPSS

Percentile

38.6%

JSON

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing, etc. A resource management error vulnerability exists in F5 BIG-IP, which stems from an undisclosed request when configuring a DNS listener on a virtual server with a DNS queue (the default) that could lead to increased memory resource utilization, which an attacker could exploit the vulnerability to cause a degradation of service, which could lead to a denial of service on the BIG-IP system.

CPENameOperatorVersion
f5 big-ip (all modules) >=14.1.0，le14.1.4
f5 big-ip (all modules) >=12.1.0，le12.1.6
f5 big-ip (all modules) >=13.1.0，le13.1.4
f5 big-ip (all modules) >=11.6.1，le11.6.5
f5 big-ip (all modules)eq15.1.0

Name	Operator	Version
f5 big-ip (all modules) >=14.1.0，	le	14.1.4
f5 big-ip (all modules) >=12.1.0，	le	12.1.6
f5 big-ip (all modules) >=13.1.0，	le	13.1.4
f5 big-ip (all modules) >=11.6.1，	le	11.6.5
f5 big-ip (all modules)	eq	15.1.0

0.001 Low

EPSS

Percentile

38.6%

JSON

Related for CNVD-2022-77530