Lucene search
F5CVELIST:CVE-2022-23027HistoryJan 25, 2022 - 7:11 p.m.
CVE-2022-23027
2022-01-2519:11:32
CWE-697
f5
www.cve.org
10
big-ip
fastl4 profile
http
fix
hash persistence profile
EPSS
0.001
Percentile
35.4%
On BIG-IP versions 15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12.1.5.3-12.1.6, and 11.6.5.2, when a FastL4 profile and an HTTP, FIX, and/or hash persistence profile are configured on the same virtual server, undisclosed requests can cause the virtual server to stop processing new client connections. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CNA Affected
[
{
"product": "BIG-IP",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "15.1.x before 15.1.4, 14.1.x before 14.1.4.4, 13.1.x beginning in 13.1.3.6, 12.1.5.3-12.1.6, and 11.6.5.2"
}
]
}
]References
Related
nvd
nvd
CVE-2022-23027
2022-01-25 20:15:09
nessus
nessus
prion
prion
Code injection
2022-01-25 20:15:00
cve
cve
CVE-2022-23027
2022-01-25 20:15:09
cnvd
cnvd
F5 BIG-IP profile vulnerability
2022-01-21 00:00:00
f5
f5
K30573026 : BIG-IP virtual server with FastL4 profile vulnerability CVE-2022-23027
2022-01-19 00:00:00
K40084114 : Overview of F5 vulnerabilities (January 2022)
2022-01-19 00:00:00