Lucene search

[email protected]NVD:CVE-2022-34844

HistoryAug 04, 2022 - 6:15 p.m.

CVE-2022-34844

2022-08-0418:15:10

CWE-20

[email protected]

web.nvd.nist.gov

cve-2022-34844

big-ip

big-iq

aws

traffic management microkernel

dpdk

ena

exploitation

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

38.4%

JSON

In BIG-IP Versions 16.1.x before 16.1.3.1 and 15.1.x before 15.1.6.1, and all versions of BIG-IQ 8.x, when the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver is used with BIG-IP or BIG-IQ on Amazon Web Services (AWS) systems, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Successful exploitation relies on conditions outside of the attacker’s control. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Affected configurations

Nvd

Node

f5big-ip_access_policy_managerRange15.1.0–15.1.6.1

f5big-ip_access_policy_managerRange16.1.0–16.1.3.1

f5big-ip_advanced_firewall_managerRange15.1.0–15.1.6.1

f5big-ip_advanced_firewall_managerRange16.1.0–16.1.3.1

f5big-ip_analyticsRange15.1.0–15.1.6.1

f5big-ip_analyticsRange16.1.0–16.1.3.1

f5big-ip_application_acceleration_managerRange15.1.0–15.1.6.1

f5big-ip_application_acceleration_managerRange16.1.0–16.1.3.1

f5big-ip_application_security_managerRange15.1.0–15.1.6.1

f5big-ip_application_security_managerRange16.1.0–16.1.3.1

f5big-ip_domain_name_systemRange15.1.0–15.1.6.1

f5big-ip_domain_name_systemRange16.1.0–16.1.3.1

f5big-ip_fraud_protection_serviceRange15.1.0–15.1.6.1

f5big-ip_fraud_protection_serviceRange16.1.0–16.1.3.1

f5big-ip_global_traffic_managerRange15.1.0–15.1.6.1

f5big-ip_global_traffic_managerRange16.1.0–16.1.3.1

f5big-ip_link_controllerRange15.1.0–15.1.6.1

f5big-ip_link_controllerRange16.1.0–16.1.3.1

f5big-ip_local_traffic_managerRange15.1.0–15.1.6.1

f5big-ip_local_traffic_managerRange16.1.0–16.1.3.1

f5big-ip_policy_enforcement_managerRange15.1.0–15.1.6.1

f5big-ip_policy_enforcement_managerRange16.1.0–16.1.3.1

f5big-iq_centralized_managementMatch7.0.0

f5big-iq_centralized_managementMatch7.1.0

f5big-iq_centralized_managementMatch8.0.0

f5big-iq_centralized_managementMatch8.1.0

f5big-iq_centralized_managementMatch8.2.0

VendorProductVersionCPE
f5big-ip_access_policy_manager*cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*
f5big-ip_advanced_firewall_manager*cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*
f5big-ip_analytics*cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*
f5big-ip_application_acceleration_manager*cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*
f5big-ip_application_security_manager*cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
f5big-ip_domain_name_system*cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
f5big-ip_fraud_protection_service*cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*
f5big-ip_global_traffic_manager*cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
f5big-ip_link_controller*cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*
f5big-ip_local_traffic_manager*cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
f5	big-ip_access_policy_manager	*	cpe:2.3:a:f5:big-ip_access_policy_manager::::::::
f5	big-ip_advanced_firewall_manager	*	cpe:2.3:a:f5:big-ip_advanced_firewall_manager::::::::
f5	big-ip_analytics	*	cpe:2.3:a:f5:big-ip_analytics::::::::
f5	big-ip_application_acceleration_manager	*	cpe:2.3:a:f5:big-ip_application_acceleration_manager::::::::
f5	big-ip_application_security_manager	*	cpe:2.3:a:f5:big-ip_application_security_manager::::::::
f5	big-ip_domain_name_system	*	cpe:2.3:a:f5:big-ip_domain_name_system::::::::
f5	big-ip_fraud_protection_service	*	cpe:2.3:a:f5:big-ip_fraud_protection_service::::::::
f5	big-ip_global_traffic_manager	*	cpe:2.3:a:f5:big-ip_global_traffic_manager::::::::
f5	big-ip_link_controller	*	cpe:2.3:a:f5:big-ip_link_controller::::::::
f5	big-ip_local_traffic_manager	*	cpe:2.3:a:f5:big-ip_local_traffic_manager::::::::