Lucene search
China National Vulnerability DatabaseCNVD-2023-05959HistoryFeb 01, 2023 - 12:00 a.m.
F5 BIG-IP AWAF and ASM Denial of Service Vulnerability
2023-02-0100:00:00
China National Vulnerability Database
www.cnvd.org.cn
11
f5 big-ip
awaf
asm
denial of service
vulnerability
memory resource utilization
unauthenticated remote attacker
0.001 Low
EPSS
Percentile
33.7%
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A denial of service vulnerability exists in F5 BIG-IP AWAF and ASM, where when a BIG-IP Advanced WAF or BIG-IP ASM security policy is configured on a virtual server, an undisclosed request can result in increased memory resource utilization, which can be exploited by an unauthenticated remote attacker to cause a degradation of service, resulting in a denial of service on the BIG-IP system.
Related
f5
f5
K17542533 : BIG-IP Advanced WAF and ASM vulnerability CVE-2023-23552
2023-02-01 00:00:00
K000130496 : Overview of F5 vulnerabilities (February 2023)
2023-02-01 00:00:00
cvelist
cvelist
CVE-2023-23552 BIG-IP Advanced WAF and ASM vulnerability
2023-02-01 17:56:47
prion
prion
Design/Logic Flaw
2023-02-01 18:15:00
nvd
nvd
CVE-2023-23552
2023-02-01 18:15:11
cve
cve
CVE-2023-23552
2023-02-01 18:15:11
nuclei
nuclei
Joomla! Webservice - Password Disclosure
2023-02-17 09:11:40