CVE-2024-21763

🗓️ 14 Feb 2024 16:30:25Reported by f5Type

cve🔗 web.nvd.nist.gov📰️ 4 Media mentions👁 63 Views

When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad actor detection, undisclosed queries can cause the Traffic Management Microkernel (TMM) to terminate

Reporter	Title	Published	Views	Family All 11
CNNVD	F5 BIG-IP AFM Code Issue Vulnerability	14 Feb 202400:00	–	cnnvd
Cvelist	CVE-2024-21763 BIG-IP AFM vulnerability	14 Feb 202416:30	–	cvelist
EUVD	EUVD-2024-19377	3 Oct 202520:07	–	euvd
F5 Networks	K000137521: BIG-IP AFM vulnerability CVE-2024-21763	14 Feb 202413:58	–	f5
F5 Networks	K000138353: Quarterly Security Notification (February 2024)	14 Feb 202414:04	–	f5
Tenable Nessus	F5 Networks BIG-IP : BIG-IP AFM vulnerability (K000137521)	14 Feb 202400:00	–	nessus
NCSC	Vulnerabilities fixed in F5 BIG-IP and BIG-IQ	16 Feb 202400:00	–	ncsc
NVD	CVE-2024-21763	14 Feb 202417:15	–	nvd
Prion	Default credentials	14 Feb 202417:15	–	prion
Positive Technologies	PT-2024-19042 · F5 · Big-Ip Afm	14 Feb 202400:00	–	ptsecurity

NVD

Node

f5 big-ip_advanced_firewall_managerRange17.1.0–17.1.1

[
  {
    "defaultStatus": "unknown",
    "modules": [
      "AFM"
    ],
    "product": "BIG-IP",
    "vendor": "F5",
    "versions": [
      {
        "lessThan": "17.1.1",
        "status": "affected",
        "version": "17.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "16.1.4",
        "status": "affected",
        "version": "16.1.0",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1.10",
        "status": "affected",
        "version": "15.1.0",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
my	www.my.f5.com/manage/s/article/K000137521

12 Dec 2024 19:12Current

7.6High risk

Vulners AI Score7.6

CVSS 3.17.5

EPSS0.00362

SSVC

CWE-476