Lucene search
F5CVELIST:CVE-2024-25560HistoryMay 08, 2024 - 3:01 p.m.
CVE-2024-25560 TMM Vulnerability
2024-05-0815:01:25
CWE-476
f5
www.cve.org
5
big-ip afm
software vulnerability
dns traffic
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
When BIG-IP AFM is licensed and provisioned, undisclosed DNS traffic can cause the Traffic Management Microkernel (TMM) to terminate.
Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CNA Affected
[
{
"defaultStatus": "unknown",
"modules": [
"AFM"
],
"product": "BIG-IP",
"vendor": "F5",
"versions": [
{
"lessThan": "17.1.1",
"status": "affected",
"version": "17.1.0",
"versionType": "custom"
},
{
"lessThan": "16.1.4",
"status": "affected",
"version": "16.1.0",
"versionType": "custom"
},
{
"lessThan": "*",
"status": "affected",
"version": "15.1.0",
"versionType": "custom"
}
]
},
{
"defaultStatus": "unknown",
"product": "BIG-IP Next CNF",
"vendor": "F5",
"versions": [
{
"lessThan": "1.2.0",
"status": "affected",
"version": "1.1.0",
"versionType": "custom"
}
]
}
]References
Related
nvd
nvd
CVE-2024-25560
2024-05-08 15:15:08
vulnrichment
vulnrichment
CVE-2024-25560 TMM Vulnerability
2024-05-08 15:01:25
f5
f5
K000139037: TMM vulnerability CVE-2024-25560
2024-05-08 00:00:00
K000139404 : Quarterly Security Notification (May 2024)
2024-05-08 00:00:00
cve
cve
CVE-2024-25560
2024-05-08 15:15:08
nessus
nessus
F5 Networks BIG-IP : TMM vulnerability (K000139037)
2024-05-15 00:00:00
CVSS3
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
0
Percentile
9.0%
Related for CVELIST:CVE-2024-25560