Lucene search
China National Vulnerability DatabaseCNVD-2023-05956HistoryFeb 01, 2023 - 12:00 a.m.
F5 HTTP profile denial of service vulnerability
2023-02-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
10
f5 big-ip
http profiles
denial of service
0.001 Low
EPSS
Percentile
33.8%
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A denial of service vulnerability exists in F5 HTTP profiles, when a non-default HTTP profile is configured on a virtual server with the options to force HTTP compliance and deny unknown methods enabled, an undisclosed requests could cause TMM to terminate and an attacker could exploit the vulnerability to cause a denial of service.
| CPE | Name | Operator | Version |
|---|---|---|---|
| f5 big-ip (all modules) >=16.1.0, | le | 16.1.3 | |
| f5 big-ip (all modules) | eq | 17.0.0 |
Related
cve
cve
CVE-2023-22422
2023-02-01 18:15:11
nvd
nvd
CVE-2023-22422
2023-02-01 18:15:11
prion
prion
Code injection
2023-02-01 18:15:00
nessus
nessus
F5 Networks BIG-IP : HTTP profile vulnerability (K43881487)
2023-06-23 00:00:00
cvelist
cvelist
CVE-2023-22422 HTTP profile vulnerability
2023-02-01 17:55:51
f5
f5
K43881487 : HTTP profile vulnerability CVE-2023-22422
2023-02-01 00:00:00
K000130496 : Overview of F5 vulnerabilities (February 2023)
2023-02-01 00:00:00