Lucene search
K

151 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 3:40 p.m.12 views

CVE-2020-5878

On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.1, and 14.1.0-14.1.2.3, Traffic Management Microkernel TMM may restart on BIG-IP Virtual Edition VE while processing unusual IP traffic...

7.5CVSS6.9AI score0.01044EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:13 p.m.9 views

CVE-2020-5887

On versions 15.1.0-15.1.0.1, 15.0.0-15.0.1.2, and 14.1.0-14.1.2.3, BIG-IP Virtual Edition VE may expose a mechanism for remote attackers to access local daemons and bypass port lockdown settings...

9.1CVSS6.9AI score0.01803EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:41 a.m.6 views

CVE-2019-6676

On versions 15.0.0-15.0.1, 14.0.0-14.1.2.2, and 13.1.0-13.1.3.1, TMM may restart on BIG-IP Virtual Edition VE when using virtio direct descriptors and packets 2 KB or larger...

7.5CVSS7AI score0.01044EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/14 2:32 p.m.34 views

CVE-2024-41727 BIG-IP TMM vulnerability

In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition VEs using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS7.2AI score0.00481EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/08/14 2:32 p.m.29 views

CVE-2024-41727 BIG-IP TMM vulnerability

In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition VEs using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00481EPSS
Exploits0References1
CVE
CVE
added 2024/08/14 2:32 p.m.94 views

CVE-2024-41727

CVE-2024-41727 affects BIG-IP TMM on BIG-IP devices (and BIG-IP VE with Intel E810 SR-IOV NIC) where undisclosed traffic can cause memory resource utilization to spike, degrading performance or causing DoS. Public details specify the vulnerable components as the Traffic Management Microkernel (TM...

8.7CVSS7.6AI score0.00481EPSS
Exploits0References1Affected Software21
F5 Networks
F5 Networks
added 2024/08/14 1:12 p.m.47 views

K000138833: BIG-IP TMM vulnerability CVE-2024-41727

Security Advisory Description In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition VEs using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in memory resource utilization. CVE-2024-41727 Impact System performance can degrade until the Traffic...

8.7CVSS6.8AI score0.00481EPSS
Exploits0Affected Software12
IBM Security Bulletins
IBM Security Bulletins
added 2024/07/29 9:28 p.m.34 views

Security Bulletin: IBM DataPower Gateway Virtual Edition vulnerable to security bypass due to open-vm-tools (CVE-2023-20867)

Summary open-vm-tools provides an interface between IBM DataPower Gateway Virtual Edition and the hypervisor. This issue may permit a compromised hypervisor to perform unauthorized guest operations. Vulnerability Details CVEID:CVE-2023-20867 DESCRIPTION: VMware Tools could allow a local...

3.9CVSS4.6AI score0.13638EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/05/14 3:3 p.m.30 views

Security Bulletin: IBM DataPower Gateway Virtual Edition affected by bypass vulnerability in Open VM Tools

Summary Exploitation of this flaw requires root access to the ESXi host. IBM has addressed the vulnerability. Vulnerability Details CVEID:CVE-2023-20867 DESCRIPTION: VMware Tools could allow a local authenticated attacker to bypass security restrictions, caused by the failure to authenticate...

3.9CVSS4.7AI score0.13638EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.13 views

Dell NetWorker Virtual Edition Installed (Linux)

Binary data dellnetworkervirtualeditioninstalled.nbin...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/12/22 12:0 a.m.25 views

Dell NetWorker Virtual Edition Weak SSH Cryptography (DSA-2023-358)

The version of Dell NetWorker Virtual Edition installed on the remote Linux host is prior to 19.7, 19.7.0.x prior to 19.7.0.6, 19.7.1, 19.8.x prior to 19.8.0.4 or 19.9.x prior to 19.9.0.3. It is, therefore, affected by vulnerability in the SSH component. Due to use of deprecated cryptographic...

5.3CVSS5.8AI score0.00404EPSS
Exploits0References2
OSV
OSV
added 2023/12/18 12:15 p.m.4 views

CVE-2023-28053

Dell NetWorker Virtual Edition versions 19.8 and below contain the use of deprecated cryptographic algorithms in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to some information disclosure...

5.3CVSS5.8AI score0.00404EPSS
Exploits0References1
CVE
CVE
added 2023/12/18 11:30 a.m.59 views

CVE-2023-28053

Dell NetWorker Virtual Edition versions 19.8 and earlier are affected by a vulnerability in the SSH component due to the use of deprecated cryptographic algorithms, enabling an unauthenticated remote attacker to potentially disclose information. Affected products include Dell NetWorker Virtual Ed...

5.3CVSS5.2AI score0.00404EPSS
Exploits0References1Affected Software1
CNNVD
CNNVD
added 2023/12/18 12:0 a.m.3 views

Dell NetWorker 加密问题漏洞

Dell NetWorker is an application from Dell USA Inc. Provides forum discussion features for Dell Inc. A cryptographic issue vulnerability exists in Dell NetWorker Virtual Edition 19.8 and prior versions, which stems from the use of an unrecommended encryption algorithm by the SSH component, and ca...

5.3CVSS6.5AI score0.00404EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2023/12/18 12:0 a.m.5 views

PT-2023-21517 · Dell · Dell Networker Virtual Edition

Name of the Vulnerable Software and Affected Versions: Dell NetWorker Virtual Edition versions 19.8 and below Description: The issue concerns the use of deprecated cryptographic algorithms in the SSH component, which could be exploited by a remote unauthenticated attacker, potentially leading to...

5.3CVSS5.2AI score0.00404EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/06/23 12:0 a.m.18 views

F5 Networks BIG-IP : BIG-IP Virtual Edition vulnerability (K24572686)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.3 / 15.1.8. It is, therefore, affected by a vulnerability as referenced in the K24572686 advisory. - On BIG-IP Virtual Edition versions 15.1x beginning in 15.1.4 to before 15.1.8 and 14.1.x beginning in 14.1.5 to...

7.5CVSS7.4AI score0.00626EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 8:1 p.m.42 views

K45616155: Nettle vulnerability CVE-2018-16869

Security Advisory Description A Bleichenbacher type side-channel based padding oracle attack was found in the way nettle handles endian conversion of RSA decrypted PKCS1 v1.5 data. An attacker who is able to run a process on the same physical core as the victim process, could use this flaw extrac...

5.7CVSS4.8AI score0.01495EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.24 views

K73274382: BIG-IP Virtual Edition TMM vulnerability CVE-2020-5888

Security Advisory Description BIG-IP Virtual Edition VE may expose a mechanism for adjacent network layer 2 attackers to access local daemons and bypass port lockdown settings. CVE-2020-5888 Impact Hosts in adjacent networks may be able to bypass port lockdown settings on BIG-IP VE hosts. Securit...

8.1CVSS7.7AI score0.00574EPSS
Exploits0Affected Software11
F5 Networks
F5 Networks
added 2023/02/21 7:54 p.m.65 views

K29146534: SSB Variant 4 vulnerability CVE-2018-3639

Security Advisory Description Systems with microprocessors utilizing speculative execution and speculative execution of memory reads before the addresses of all prior memory writes are known may allow unauthorized disclosure of information to an attacker with local user access via a side-channel...

5.5CVSS6.8AI score0.60631EPSS
Exploits2Affected Software19
F5 Networks
F5 Networks
added 2023/02/21 7:8 p.m.46 views

K15341: BIG-IP ASM Virtual Edition may run out of memory under certain DoS conditions

Security Advisory Description The BIG-IP ASM system limits the maximum number of concurrent requests with large payloads 10,000 bytes or larger by default to 100, using the maxconcurrentlongrequest internal parameter. The BIG-IP ASM system drops new requests with large payloads once this limit is...

6.5AI score
Exploits0Affected Software1
Rows per page
Query Builder