Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K43881487
HistoryFeb 01, 2023 - 12:00 a.m.

K43881487 : HTTP profile vulnerability CVE-2023-22422

2023-02-0100:00:00
my.f5.com
3
http profile
enforcement options
rfc compliance
unknown methods
tmm termination
dos
big-ip system

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.8%

JSON

Security Advisory Description

When an HTTP profile with the non-default Enforcement options Enforce RFC Compliance andUnknown Methods: Reject are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. (CVE-2023-22422)

Impact

Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote, unauthenticated attacker to cause a denial-of-service (DoS) on the BIG-IP system. There is no control plane exposure; this is a data plane issue only.

Related

cnvd 1
cve 1
nvd 1
prion 1
nessus 1
cvelist 1
f5 1
cnvd
cnvd
F5 HTTP profile denial of service vulnerability
2023-02-01 00:00:00
cve
cve
CVE-2023-22422
2023-02-01 18:15:11
nvd
nvd
CVE-2023-22422
2023-02-01 18:15:11
prion
prion
Code injection
2023-02-01 18:15:00
nessus
nessus
F5 Networks BIG-IP : HTTP profile vulnerability (K43881487)
2023-06-23 00:00:00
cvelist
cvelist
CVE-2023-22422 HTTP profile vulnerability
2023-02-01 17:55:51
f5
f5
K000130496 : Overview of F5 vulnerabilities (February 2023)
2023-02-01 00:00:00

6.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.8%

JSON
Related for F5:K43881487
cnvd1cve1nvd1prion1nessus1cvelist1f51