Lucene search
K

6 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 7:17 p.m.9 views

CVE-2021-22981

On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret EMS extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during...

5.8CVSS6.7AI score0.00536EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.28 views

K09121542: BIG-IP SSL/TLS vulnerability CVE-2021-22981

Security Advisory Description The original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret EMS extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during renegotiation...

5.8CVSS5.8AI score0.00536EPSS
Exploits0Affected Software14
Circl
Circl
added 2021/02/12 8:43 p.m.6 views

CVE-2021-22981

creationtimestamp| type| source ---|---|--- 2021-02-12 20:43:53+00:00| seen| https://t.me/cibsecurity/23556...

5.8CVSS5.9AI score0.00536EPSS
Exploits0References1
CVE
CVE
added 2021/02/12 5:50 p.m.96 views

CVE-2021-22981

CVE-2021-22981 affects BIG-IP (LTM, AAM, and other modules) on 12.1.x and 11.6.x where TLS renegotiation can be exploited if EMS (RFC 7627) is not used; this enables man‑in‑the‑middle attacks via the master-secret negotiation (Triple Handshake). The issue is caused by the original TLS protocol la...

5.8CVSS5AI score0.00536EPSS
Exploits0References1Affected Software14
Cvelist
Cvelist
added 2021/02/12 5:50 p.m.33 views

CVE-2021-22981

On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation that is mitigated by the Extended Master Secret EMS extension defined in RFC 7627. TLS connections that do not use EMS are vulnerable to man-in-the-middle attacks during...

5.2AI score0.00536EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/02/11 12:0 a.m.51 views

F5 Networks BIG-IP : BIG-IP SSL/TLS vulnerability (K09121542)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.0.0. It is, therefore, affected by a vulnerability as referenced in the K09121542 advisory. - On all versions of BIG-IP 12.1.x and 11.6.x, the original TLS protocol includes a weakness in the master secret negotiation...

5.8CVSS6.3AI score0.00536EPSS
Exploits0References2
Rows per page
Query Builder