BIG-IP (AFM, ASM) Security Vulnerabilities

GHSA-8R3F-844C-MC37 vulnerabilities

Vulnerabilities for packages: melange, frp, prometheus-pushgateway, conftest, php-fpm_exporter, helm, loki, stakater-reloader, cilium, kubescape, pulumi-kubernetes-operator, jaeger-agent, prometheus-elasticsearch-exporter, k9s, tkn, docker-compose, kubeflow-pipelines, k8sgpt,...

CVE-2023-45289 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

CVE-2023-44487 vulnerabilities

Vulnerabilities for packages: frp, conftest, gobuster, helm, stakater-reloader, kubescape, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, cue, aws-efs-csi-driver, gitlab-pages, gitlab-runner, flux-helm-controller, amass, external-dns, cluster-autoscaler, prometheus-adapter,...

CVE-2024-3177 vulnerabilities

Vulnerabilities for packages: nodetaint, node-feature-discovery, spark-operator, ip-masq-agent, local-static-provisioner, aws-ebs-csi-driver, calico, kubernetes-dns-node-cache, kubernetes, cluster-autoscaler,...

GHSA-RR6R-CFGF-GC6H vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

CVE-2024-24784 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

CVE-2024-24786 vulnerabilities

Vulnerabilities for packages: melange, frp, prometheus-pushgateway, conftest, php-fpm_exporter, helm, loki, stakater-reloader, cilium, kubescape, pulumi-kubernetes-operator, jaeger-agent, prometheus-elasticsearch-exporter, k9s, tkn, docker-compose, kubeflow-pipelines, k8sgpt,...

CVE-2024-24789 vulnerabilities

Vulnerabilities for packages: conftest, aws-flb-firehose, gobuster, helm, kubescape, nri-postgresql, docker-compose, prometheus-alertmanager, dockerize, yam, harbor-registry, http-echo, gitlab-runner, flux-helm-controller, docker-credential-ecr-login, external-dns, nri-mssql, opa, influx, xcaddy,.....

CVE-2023-45285 vulnerabilities

Vulnerabilities for packages: wait-for-port, kind, sonobuoy, aws-flb-firehose, gobuster, aactl, go-md2man, cilium-envoy, flannel-cni-plugin, render-template, cortex, configmap-reload, scorecard, docker-credential-ecr-login, amass, prometheus-stackdriver-exporter, sops, slsa-verifier, grpcurl, nsc,....

GHSA-5FQ7-4MXC-535H vulnerabilities

Vulnerabilities for packages: melange, frp, harbor, conftest, php-fpm_exporter, helm, loki, kubescape, pulumi-kubernetes-operator, jaeger-agent, bom, cue, k9s, docker-compose, prometheus-alertmanager, k8sgpt, vault-k8s, step-ca, aws-efs-csi-driver, dockerize, gitlab-pages, harbor-registry,...

CVE-2024-24787 vulnerabilities

Vulnerabilities for packages: melange, frp, harbor, conftest, php-fpm_exporter, helm, loki, kubescape, pulumi-kubernetes-operator, jaeger-agent, bom, cue, k9s, docker-compose, prometheus-alertmanager, k8sgpt, vault-k8s, step-ca, aws-efs-csi-driver, dockerize, gitlab-pages, harbor-registry,...

CVE-2023-45288 vulnerabilities

Vulnerabilities for packages: conftest, aws-flb-firehose, gobuster, helm, stakater-reloader, kubescape, nri-postgresql, docker-compose, prometheus-alertmanager, dockerize, yam, harbor-registry, http-echo, gitlab-runner, flux-helm-controller, docker-credential-ecr-login, external-dns, nri-mssql,...

GHSA-2JWV-JMQ4-4J3R vulnerabilities

Vulnerabilities for packages: melange, frp, harbor, conftest, php-fpm_exporter, helm, loki, kubescape, pulumi-kubernetes-operator, jaeger-agent, bom, cue, k9s, docker-compose, prometheus-alertmanager, k8sgpt, vault-k8s, step-ca, aws-efs-csi-driver, dockerize, gitlab-pages, harbor-registry,...

GHSA-4V7X-PQXF-CX7M vulnerabilities

Vulnerabilities for packages: conftest, aws-flb-firehose, gobuster, helm, stakater-reloader, kubescape, nri-postgresql, docker-compose, prometheus-alertmanager, dockerize, yam, harbor-registry, http-echo, gitlab-runner, flux-helm-controller, docker-credential-ecr-login, external-dns, nri-mssql,...

CVE-2024-24790 vulnerabilities

Vulnerabilities for packages: conftest, aws-flb-firehose, gobuster, helm, kubescape, nri-postgresql, docker-compose, prometheus-alertmanager, dockerize, yam, harbor-registry, http-echo, gitlab-runner, flux-helm-controller, docker-credential-ecr-login, external-dns, nri-mssql, opa, influx, xcaddy,.....

CVE-2023-5528 vulnerabilities

Vulnerabilities for packages: spark-operator, ip-masq-agent, aws-efs-csi-driver, aws-ebs-csi-driver, calico, kubernetes-dns-node-cache, cluster-autoscaler, prometheus-adapter,...

GHSA-HQ6Q-C2X6-HMCH vulnerabilities

Vulnerabilities for packages: spark-operator, ip-masq-agent, aws-efs-csi-driver, aws-ebs-csi-driver, calico, kubernetes-dns-node-cache, cluster-autoscaler, prometheus-adapter,...

GHSA-FGQ5-Q76C-GX78 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

GHSA-3Q2C-PVP5-3CQP vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

GHSA-J6M3-GC37-6R6Q vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

CVE-2023-39326 vulnerabilities

Vulnerabilities for packages: wait-for-port, kind, sonobuoy, aws-flb-firehose, gobuster, aactl, go-md2man, cilium-envoy, flannel-cni-plugin, render-template, cortex, configmap-reload, scorecard, docker-credential-ecr-login, amass, prometheus-stackdriver-exporter, sops, slsa-verifier, grpcurl, nsc,....

GHSA-QPPJ-FM5R-HXR3 vulnerabilities

Vulnerabilities for packages: frp, conftest, gobuster, helm, stakater-reloader, kubescape, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, cue, aws-efs-csi-driver, gitlab-pages, gitlab-runner, flux-helm-controller, amass, external-dns, cluster-autoscaler, prometheus-adapter,...

CVE-2024-24783 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

CVE-2024-24785 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

GHSA-32CH-6X54-Q4H9 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

GHSA-49GW-VXVF-FC2G vulnerabilities

Vulnerabilities for packages: conftest, aws-flb-firehose, gobuster, helm, kubescape, nri-postgresql, docker-compose, prometheus-alertmanager, dockerize, yam, harbor-registry, http-echo, gitlab-runner, flux-helm-controller, docker-credential-ecr-login, external-dns, nri-mssql, opa, influx, xcaddy,.....

GHSA-5F94-VHJQ-RPG8 vulnerabilities

Vulnerabilities for packages: wait-for-port, kind, sonobuoy, aws-flb-firehose, gobuster, aactl, go-md2man, cilium-envoy, flannel-cni-plugin, render-template, cortex, configmap-reload, scorecard, docker-credential-ecr-login, amass, prometheus-stackdriver-exporter, sops, slsa-verifier, grpcurl, nsc,....

GHSA-9F76-WG39-X86H vulnerabilities

Vulnerabilities for packages: wait-for-port, kind, sonobuoy, aws-flb-firehose, gobuster, aactl, go-md2man, cilium-envoy, flannel-cni-plugin, render-template, cortex, configmap-reload, scorecard, docker-credential-ecr-login, amass, prometheus-stackdriver-exporter, sops, slsa-verifier, grpcurl, nsc,....

CVE-2024-24788 vulnerabilities

Vulnerabilities for packages: melange, frp, harbor, conftest, php-fpm_exporter, helm, loki, kubescape, pulumi-kubernetes-operator, jaeger-agent, bom, cue, k9s, docker-compose, prometheus-alertmanager, k8sgpt, vault-k8s, step-ca, aws-efs-csi-driver, dockerize, gitlab-pages, harbor-registry,...

GHSA-236W-P7WF-5PH8 vulnerabilities

Vulnerabilities for packages: conftest, aws-flb-firehose, gobuster, helm, kubescape, nri-postgresql, docker-compose, prometheus-alertmanager, dockerize, yam, harbor-registry, http-echo, gitlab-runner, flux-helm-controller, docker-credential-ecr-login, external-dns, nri-mssql, opa, influx, xcaddy,.....

CVE-2023-45290 vulnerabilities

Vulnerabilities for packages: prometheus-pushgateway, nri-rabbitmq, aws-flb-firehose, php-fpm_exporter, gobuster, helm, loki, stakater-reloader, pulumi-kubernetes-operator, prometheus-elasticsearch-exporter, bom, sbomqs, cue, vault-k8s, kubeflow-pipelines, k8sgpt, prometheus-alertmanager,...

GHSA-PXHW-596R-RWQ5 vulnerabilities

Vulnerabilities for packages: nodetaint, node-feature-discovery, spark-operator, ip-masq-agent, local-static-provisioner, aws-ebs-csi-driver, calico, kubernetes-dns-node-cache, kubernetes, cluster-autoscaler,...

Malvertising Campaign Leads to Execution of Oyster Backdoor

The following analysts contributed to this blog: Thomas Elkins, Daniel Thiede, Josh Lockwood, Tyler McGraw, and Sasha Kovalev. Executive Summary Rapid7 has observed a recent malvertising campaign that lures users into downloading malicious installers for popular software such as Google Chrome and.....

China-Linked Hackers Infiltrate East Asian Firm for 3 Years Using F5 Devices

A suspected China-nexus cyber espionage actor has been attributed as behind a prolonged attack against an unnamed organization located in East Asia for a period of about three years, with the adversary establishing persistence using legacy F5 BIG-IP appliances and using it as an internal...

Hackers Exploit Legitimate Websites to Deliver BadSpace Windows Backdoor

Legitimate-but-compromised websites are being used as a conduit to deliver a Windows backdoor dubbed BadSpace under the guise of fake browser updates. "The threat actor employs a multi-stage attack chain involving an infected website, a command-and-control (C2) server, in some cases a fake browser....

Exploit for CVE-2024-30078

CVE-2024-30078 Detection and Command Execution Script This...

Exploit for CVE-2024-30078

CVE-2024-30078 Detection and Command Execution Script This...

Exploit for Deserialization of Untrusted Data in Clear Clearml

ClearML Exploit Script This repository contains a Python...

Exploit for Path Traversal in Solarwinds Serv-U

CVE-2024-28995 PoC and Bulk Scanner Overview This...

CVE-2024-6003

A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is possible to launch the...

CVE-2024-6003

A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is possible to launch the...

CVE-2024-6003 Guangdong Baolun Electronics IP Network Broadcasting Service Platform maps sql injection

A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is possible to launch the...

CVE-2024-6003 Guangdong Baolun Electronics IP Network Broadcasting Service Platform maps sql injection

A vulnerability was found in Guangdong Baolun Electronics IP Network Broadcasting Service Platform 2.0. It has been classified as critical. Affected is an unknown function of the file /api/v2/maps. The manipulation of the argument orderColumn leads to sql injection. It is possible to launch the...

resource-agents bug fix update

An update is available for resource-agents. This update affects Rocky Linux 9. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The resource-agents packages provide the Pacemaker and RGManager...

Moderate: traceroute security update

The traceroute utility displays the route used by IP packets on their way to a specified network (or Internet) host. Security Fix(es): traceroute: improper command line parsing (CVE-2023-46316) For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and...

Important: bind and dhcp security update

The Berkeley Internet Name Domain (BIND) is an implementation of the Domain Name System (DNS) protocols. BIND includes a DNS server (named); a resolver library (routines for applications to use when interfacing with DNS); and tools for verifying that the DNS server is operating correctly. The...

traceroute security update

An update is available for traceroute. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The traceroute utility displays the route used by IP packets on their way....

bind and dhcp security update

An update is available for dhcp, bind. This update affects Rocky Linux 8. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list The Berkeley Internet Name Domain (BIND) is an implementation of the...

CVE-2024-36969

In the Linux kernel, the following vulnerability has been resolved: drm/amd/display: Fix division by zero in setup_dsc_config When slice_height is 0, the division by slice_height in the calculation of the number of slices will cause a division by zero driver crash. This leaves the kernel in a...

SUSE SLES15 / openSUSE 15 Security Update : kernel (SUSE-SU-2024:2019-1)

The remote SUSE Linux SLES15 / SLES_SAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2019-1 advisory. The SUSE Linux Enterprise 15 SP5 Azure kernel was updated to receive various security bugfixes. The following...