Lucene search
K

21 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-7209

Malware in sbrugna...

7.8CVSS7.7AI score0.00883EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 7:27 p.m.37 views

K12650: PHP vulnerability CVE-2010-4645

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...

5CVSS9AI score0.15103EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.30 views

K25359902: BIG-IP AAM security vulnerability CVE-2019-6601

Security Advisory Description The BIG-IP AAM wamd process used in the processing of images and PDFs fails to drop group permissions when executing helper scripts. CVE-2019-6601 Impact This issue does not have a direct exploit, but may be used in unknown ways when targeting the BIG-IP AAM module...

5.5CVSS5.6AI score0.00322EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.37 views

K19430431: TMM vulnerability CVE-2017-6160

Security Advisory Description A remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel TMM to restart and temporarily fail to process traffic. This issue is exposed on virtual servers using a Policy Enforcement profile or a Web Acceleration profile...

5.9CVSS5.8AI score0.03645EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2023/02/21 6:47 p.m.39 views

K68785753: ImageMagick vulnerability CVE-2015-8898

Security Advisory Description The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted image file. CVE-2015-8898 Impact BIG-IP systems that use a WebAcceleration profile configured wit...

5.5CVSS7.7AI score0.01991EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2023/02/21 6:30 p.m.36 views

K16882: OpenLDAP vulnerability CVE-2013-4449

Security Advisory Description Description The rwm overlay in OpenLDAP 2.4.23, 2.4.36, and earlier does not properly count references, which allows remote attackers to cause a denial of service slapd crash by unbinding immediately after a search request, which triggers rwmconndestroy to free the...

4.3CVSS5.3AI score0.10913EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 6:10 p.m.34 views

K16318: OpenSSL vulnerability CVE-2015-0287

Security Advisory Description The ASN1itemexd2i function in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service invalid wri...

5CVSS6.8AI score0.0837EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/01/04 12:50 a.m.36 views

K19784568: TMM vulnerability CVE-2016-5023

Security Advisory Description Virtual servers in F5 BIG-IP systems 11.2.1 HF11 through HF15, 11.4.1 HF4 through HF10, 11.5.3 through 11.5.4, 11.6.0 HF5 through HF7, and 12.0.0, when configured with a TCP profile, allow remote attackers to cause a denial of service Traffic Management Microkernel...

7.5CVSS7.5AI score0.03046EPSS
Exploits0Affected Software14
Tenable Nessus
Tenable Nessus
added 2020/03/31 12:0 a.m.39 views

F5 Networks BIG-IP : ImageMagick vulnerability (K20336394)

ImageMagick before 7.0.8-50 has a 'use of uninitialized value' vulnerability in the function ReadCUTImage in coders/cut.c. CVE-2019-13135 Impact BIG-IP AAM,Edge Gateway, and WebAccelerator This issue affects BIG-IP systems only when WAM or AAM is provisioned. If exploited, this vulnerabilitymay...

8.8CVSS7.1AI score0.03291EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/03/12 12:0 a.m.19 views

F5 Networks BIG-IP : BIG-IP AAM security vulnerability (K25359902)

The BIG-IP AAM wamd process used in the processing of images and PDFs fails to drop group permissions when executing helper scripts. CVE-2019-6601 Impact This issue does not have a direct exploit, but may be used in unknown ways when targeting the BIG-IP AAM module. C Tenable Network Security, In...

5.5CVSS5.8AI score0.00322EPSS
Exploits0References2
OSV
OSV
added 2018/12/20 8:29 p.m.4 views

CVE-2018-15331

On BIG-IP AAM 13.0.0 or 12.1.0-12.1.3.7, the dcdbconvert utility used by BIG-IP AAM fails to drop group permissions when executing helper scripts, which could be used to leverage attacks against the BIG-IP system...

7.8CVSS5.8AI score0.00883EPSS
Exploits0References1
NVD
NVD
added 2018/12/20 8:29 p.m.20 views

CVE-2018-15331

On BIG-IP AAM 13.0.0 or 12.1.0-12.1.3.7, the dcdbconvert utility used by BIG-IP AAM fails to drop group permissions when executing helper scripts, which could be used to leverage attacks against the BIG-IP system...

7.8CVSS7.6AI score0.00883EPSS
Exploits0References1
Cvelist
Cvelist
added 2018/12/20 8:0 p.m.25 views

CVE-2018-15331

On BIG-IP AAM 13.0.0 or 12.1.0-12.1.3.7, the dcdbconvert utility used by BIG-IP AAM fails to drop group permissions when executing helper scripts, which could be used to leverage attacks against the BIG-IP system...

7.6AI score0.00883EPSS
Exploits0References1
CVE
CVE
added 2018/12/20 8:0 p.m.49 views

CVE-2018-15331

CVE-2018-15331 affects BIG-IP AAM: the dcdb_convert utility fails to drop group permissions when executing helper scripts, enabling potential attacks against the BIG-IP system. Affected: BIG-IP AAM on 13.0.0 and 12.1.0–12.1.3.7. Root cause: dcdb_convert does not drop group permissions. Impact: ma...

7.8CVSS7.5AI score0.00883EPSS
Exploits0References1Affected Software1
CNVD
CNVD
added 2017/12/22 12:0 a.m.4 views

Denial of Service Vulnerability in Multiple F5 Products (CNVD-2018-01165)

BIG-IP LTM is a product of F5 Corporation of the U.S. F5 BIG-IP LTM is a local traffic manager; BIG-IP AAM is an application acceleration manager. A denial of service vulnerability exists in multiple F5 products. An attacker can exploit this vulnerability by sending packets to cause a denial of...

6.5CVSS6.5AI score0.00866EPSS
Exploits0References1
Prion
Prion
added 2017/10/27 2:29 p.m.22 views

Design/Logic Flaw

In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel TMM to restart and temporarily fail to process traffic. This issue is exposed on virtual servers...

4.3CVSS5.7AI score0.03645EPSS
Exploits0References3Affected Software2
F5 Networks
F5 Networks
added 2017/08/08 12:3 a.m.199 views

PHP vulnerabilities CVE-2017-9226 and CVE-2017-7890

F5 Product Development has evaluated the currently supported releases for potential vulnerability. To determine if your release is known to be vulnerable, the components or features that are affected by the vulnerability, and for information about releases or hotfixes that address the...

9.8CVSS1.2AI score0.07511EPSS
Exploits1
F5 Networks
F5 Networks
added 2016/11/21 12:0 a.m.39 views

SOL68785753 - ImageMagick vulnerability CVE-2015-8898

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5.5CVSS1.9AI score0.01991EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2016/11/08 12:0 a.m.49 views

SOL35155453 - Multiple LibTIFF vulnerabilities

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

8.8CVSS1.5AI score0.05669EPSS
Exploits2References7
Prion
Prion
added 2016/04/13 4:59 p.m.19 views

Default configuration

F5 BIG-IP LTM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.3.x, 11.4.x before 11.4.1 build 685-HF10, 11.5.1 before build 10.104.180, 11.5.2 before 11.5.4 build 0.1.256, 11.6.0 before build 6.204.442, and 12.0.0 before build 1.14.628; BIG-IP AAM 11.4.x before 11.4.1 build 685-HF10, 11.5....

4CVSS7AI score0.00791EPSS
Exploits0References2Affected Software18
Rows per page
Query Builder