CVE-2023-22839 BIG-IP DNS profile vulnerability

On BIG-IP versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8.1, 14.1.x before 14.1.5.3, and all version of 13.1.x, when a DNS profile with the Rapid Response Mode setting enabled is configured on a virtual server with hardware SYN cookies enabled, undisclosed requests...

CVE-2023-22422 HTTP profile vulnerability

On BIG-IP versions 17.0.x before 17.0.0.2 and 16.1.x before 16.1.3.3, when a HTTP profile with the non-default Enforcement options of Enforce HTTP Compliance and Unknown Methods: Reject are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to...

CVE-2023-22341 BIG-IP APM OAuth vulnerability

On version 14.1.x before 14.1.5.3, and all versions of 13.1.x, when the BIG-IP APM system is configured with all the following elements, undisclosed requests may cause the Traffic Management Microkernel TMM to terminate: An OAuth Server that references an OAuth Provider An OAuth profile with the...

CVE-2023-22302 BIG-IP HTTP profile vulnerability

In BIG-IP versions 17.0.x before 17.0.0.2, and 16.1.x beginning in 16.1.2.2 to before 16.1.3.3, when an HTTP profile is configured on a virtual server and conditions beyond the attacker’s control exist on the target pool member, undisclosed requests sent to the BIG-IP system can cause the Traffic...

CVE-2023-22281 BIG-IP AFM vulnerability

On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8, 14.1.x before 14.1.5.3, and all versions of 13.1.x, when a BIG-IP AFM NAT policy with a destination NAT rule is configured on a FastL4 virtual server, undisclosed traffic can cause the Traffic Management Microkernel...

PT-2023-7393 · F5 · Big-Ip Spk +2

Name of the Vulnerable Software and Affected Versions: BIG-IP Virtual Edition versions 15.1.4 through 15.1.8 BIG-IP Virtual Edition versions 14.1.5 through 14.1.5.3 BIG-IP SPK versions 1.5.0 through 1.6.0 Description: The issue is related to the Traffic Management Microkernel TMM terminating when...

PT-2023-1469 · F5 · Big-Ip

Name of the Vulnerable Software and Affected Versions: BIG-IP versions 13.1.x BIG-IP versions 14.1.x before 14.1.5.3 BIG-IP versions 15.1.x before 15.1.8 BIG-IP versions 16.1.x before 16.1.3.3 BIG-IP versions 17.0.x before 17.0.0.2 Description: The issue is related to the implementation of Networ...

PT-2023-1628 · F5 · Big-Ip Apm

Name of the Vulnerable Software and Affected Versions: BIG-IP APM versions 13.1.x and 14.1.x through 14.1.5.2 Description: The issue is related to the BIG-IP APM system, where undisclosed requests may cause the Traffic Management Microkernel TMM to terminate when configured with specific elements...

Huawei EMUI and HarmonyOS Double Release Vulnerability

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is to provide a full-scenario distributed operating system based on microkernel. A double release vulnerability exists in Huawei EMUI and HarmonyOS, which can be exploited by an attacker to cause a denial of...

Huawei EMUI and HarmonyOS Denial of Service Vulnerability

Huawei EMUI is a mobile operating system developed based on Android.Huawei HarmonyOS is to provide a full-scenario distributed operating system based on microkernel. A denial of service vulnerability exists in Huawei EMUI and HarmonyOS, which originates from its Bluetooth AVRCP module and can be...

Huawei HarmonyOS 安全漏洞

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. Huawei HarmonyOS suffers from a security vulnerability that stems from lax privilege checks...

CVE-2022-41813

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, when BIG-IP is provisioned with PEM or AFM module, an undisclosed input can cause Traffic Management Microkernel TMM to terminate...

CVE-2022-41813

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, when BIG-IP is provisioned with PEM or AFM module, an undisclosed input can cause Traffic Management Microkernel TMM to terminate...

CVE-2022-41833 BIG-IP iRule vulnerability CVE-2022-41833

In all BIG-IP 13.1.x versions, when an iRule containing the HTTP::collect command is configured on a virtual server, undisclosed requests can cause Traffic Management Microkernel TMM to terminate...

CVE-2022-41813 BIG-IP PEM and AFM TMUI, TMSH and iControl vulnerability CVE-2022-41813

In versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, when BIG-IP is provisioned with PEM or AFM module, an undisclosed input can cause Traffic Management Microkernel TMM to terminate...

PT-2022-26088 · F5 · F5 Big-Ip

Name of the Vulnerable Software and Affected Versions: F5 BIG-IP versions 13.1.x Description: The issue occurs when an iRule containing the HTTP::collect command is configured on a virtual server, allowing undisclosed requests to cause the Traffic Management Microkernel TMM to terminate...

Huawei HarmonyOS Denial of Service Vulnerability

Huawei HarmonyOS is an operating system from Huawei, China. It provides a microkernel-based distributed operating system. A denial-of-service vulnerability exists in the Huawei HarmonyOS DFX Deployment Stack module interface calls, which can be exploited by attackers to launch denial-of-service...

Huawei HarmonyOS HISP module input validation error vulnerability

Huawei HarmonyOS is an operating system from Huawei China. It provides a microkernel-based, distributed operating system. Huawei HarmonyOS is vulnerable to an input validation error, which stems from the existence of a HISP module that does not validate data passed from the kernel state. An...

Huawei HarmonyOS Storage Vectors Out-of-Bounds Read Vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based distributed operating system. An out-of-bounds read vulnerability exists in Huawei HarmonyOS, which stems from an out-of-bounds array read in the storage dimension module. An attacker could...

Huawei HarmonyOS kernel module out-of-bounds read vulnerability

Huawei HarmonyOS is an operating system from Huawei China, Inc. providing a microkernel-based, full-scenario distributed operating system. Huawei HarmonyOS provides a microkernel-based, full-scenario distributed operating system. Huawei HarmonyOS suffers from an out-of-bounds read vulnerability,...