Lucene search
K

195 matches found

OSV
OSV
added 2020/10/29 4:15 p.m.7 views

CVE-2020-5931

On BIG-IP 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, Virtual servers with a OneConnect profile may incorrectly handle WebSockets related HTTP response headers, causing TMM to restart...

7.5CVSS7.1AI score
Exploits0References1
CVE
CVE
added 2020/10/29 3:17 p.m.60 views

CVE-2020-5931

CVE-2020-5931 affects F5 BIG-IP TMM with OneConnect profiles where WebSockets HTTP response headers may be mishandled, causing TMM restart. Affected versions include BIG-IP 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2. Remediation per advisory K25400442 ...

7.5CVSS7.4AI score0.01032EPSS
Exploits0References1Affected Software11
Citrix
Citrix
added 2020/10/13 12:0 a.m.12 views

Customize Logon Page for Each NetScaler Gateway Virtual Server and Redirect Users Based on Each FQDN

This article helps you customize a different logon page for each VPN virtual server hosted on NetScaler Gateway, and configure the NetScaler appliance to redirect users to the customized page based on the FQDN. Prerequisites The NetScaler Gateway must be licensed for the Responder feature to...

7.4AI score
Exploits0
CVE
CVE
added 2020/04/30 7:49 p.m.56 views

CVE-2020-5871

CVE-2020-5871 affects BIG-IP products (TMM) with HTTP/2 on 14.1.0–14.1.2.x. The issue is a data-plane DoS when undisclosed HTTP/2 requests use back-end-cipher suites that are blacklisted by RFC 7540. Impact: potential temporary failure to process traffic after TMM restart and possible HA failover...

7.5CVSS7.5AI score0.01044EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/04/30 12:0 a.m.30 views

F5 Networks BIG-IP : BIG-IP SSL state mirroring vulnerability (K65720640)

BIG-IP systems setup for connection mirroring in a High Availability HA pair transfers sensitive cryptographic objects over an insecure communications channel. This is a control plane issue which is exposed only on the network used for connection mirroring.CVE-2020-5886 Impact On-path attackers m...

9.1CVSS8.2AI score0.00809EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/03/27 12:0 a.m.26 views

F5 Networks BIG-IP : BIG-IP HTTP profile vulnerability (K70275209)

Undisclosed HTTP behavior may lead to a denial of service. CVE-2020-5857 Impact This vulnerability impacts the BIG-IP data plane virtual servers with HTTP profiles. A BIG-IP module that has a virtual server with an associated HTTP profile and is processing traffic is impacted. C Tenable Network...

7.5CVSS7.3AI score0.01044EPSS
Exploits0References2
Fedora
Fedora
added 2020/02/27 5:33 p.m.53 views

[SECURITY] Fedora 31 Update: proftpd-1.3.6c-1.fc31

ProFTPD is an enhanced FTP server with a focus toward simplicity, security, and ease of configuration. It features a very Apache-like configuration syntax, and a highly customizable server infrastructure, including support for multiple 'virtual' FTP servers, anonymous FTP, and permission-based...

9.3CVSS0.8AI score0.19507EPSS
Exploits2
Kitploit
Kitploit
added 2020/02/09 8:30 p.m.101 views

Netdata - Real-time Performance Monitoring

Netdata is distributed, real-time, performance and health monitoring for systems and applications. It is a highly-optimized monitoring agent you install on all your systems and containers. Netdata provides unparalleled insights , in real-time , of everything happening on the systems it runs...

7.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.41 views

F5 Networks BIG-IP : TLS 1.3 vulnerability (K34450231)

BIG-IP virtual servers with TLS 1.3 enabled may experience a denial-of-service DoS due to undisclosed incoming messages. CVE-2019-6659 Impact BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator Undisclosed messages sent to a TLS 1.3-enabled...

7.5CVSS7.4AI score0.01202EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/12/31 12:0 a.m.33 views

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K76328112)

BIG-IP virtual servers with Loose Initiation enabled on a FastL4 profile may be subject to excessive flow usage under undisclosed conditions. CVE-2019-6683 Impact This vulnerability is present only on BIG-IP Virtual Edition VE systems with limited bandwidth licenses. BIG-IP VE products with...

7.5CVSS7.2AI score0.01014EPSS
Exploits0References2
NVD
NVD
added 2019/12/23 6:15 p.m.20 views

CVE-2019-6683

On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IP virtual servers with Loose Initiation enabled on a FastL4 profile may be subject to excessive flow usage under undisclosed conditions...

7.5CVSS7.5AI score0.01014EPSS
Exploits0References1
Prion
Prion
added 2019/12/23 6:15 p.m.20 views

Design/Logic Flaw

On versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, BIG-IP virtual servers with Loose Initiation enabled on a FastL4 profile may be subject to excessive flow usage under undisclosed conditions...

4.3CVSS7.5AI score0.01014EPSS
Exploits0References1Affected Software13
CVE
CVE
added 2019/12/23 5:1 p.m.58 views

CVE-2019-6683

CVE-2019-6683 affects BIG-IP BIG-IP LTM/VE with Loose Initiation on a FastL4 profile and limited-bandwidth licenses. Affected versions include 11.5.2–11.6.5.1, 12.1.0–12.1.5, 13.1.0–13.1.3, 14.0.0–14.0.1, 14.1.0–14.1.2.2, and 15.0.0–15.0.1.1. Impact is excessive flow usage leading to memory growt...

7.5CVSS7.4AI score0.01014EPSS
Exploits0References1Affected Software13
Cvelist
Cvelist
added 2019/11/27 9:38 p.m.26 views

CVE-2019-6672

On BIG-IP AFM 15.0.0-15.0.1, 14.0.0-14.1.2, and 13.1.0-13.1.3.1, when bad-actor detection is configured on a wildcard virtual server on platforms with hardware-based sPVA, the performance of the BIG-IP AFM system is degraded...

7.5AI score0.01204EPSS
Exploits0References1
OSV
OSV
added 2019/11/15 9:15 p.m.4 views

CVE-2019-6659

On version 14.0.0-14.1.0.1, BIG-IP virtual servers with TLSv1.3 enabled may experience a denial of service due to undisclosed incoming messages...

7.5CVSS7.1AI score0.01202EPSS
Exploits0References1
CVE
CVE
added 2019/11/15 8:27 p.m.93 views

CVE-2019-6659

The CVE-2019-6659 issue affects F5 BIG-IP TLS 1.3-enabled virtual servers (data plane) and can cause a DoS via undisclosed incoming messages. Affected versions (per the official advisory) include BIG-IP 14.0.0–14.1.0.1. The vulnerability is mitigated by upgrading to 14.1.0.2 (or later) for 14.x b...

7.5CVSS7.3AI score0.01202EPSS
Exploits0References1Affected Software13
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.28 views

F5 Networks BIG-IP : TMM with HTTP/2 vulnerability (K45320419)

Maliciously crafted HTTP/2 request frames can lead to denial of service. There is data plane exposure for virtual servers when the HTTP2 profile is enabled. There is no control plane exposure to this issue. CVE-2018-5514 Impact The BIG-IP system may temporarily fail to process traffic as it...

7.5CVSS7.3AI score0.03965EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.24 views

F5 Networks BIG-IP : BIG-IP SSL profile vulnerability (K53931245)

Under certain conditions, virtual servers configured with Client SSL or Server SSL profiles that make use of network hardware security module HSM functionality are exposed and impacted by this issue. CVE-2018-5524 Impact Malformed Transport Layer Security TLS requests sent to virtual servers usin...

5.3CVSS5.7AI score0.01719EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.21 views

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K77671456)

The Traffic Management Microkernel TMM may restart when processing a specific sequence of packets on IPv6 virtual servers. CVE-2018-5510 Note : This vulnerability does not affect IPv4 virtual servers. Impact The Traffic Management Microkernel TMM generates a core file and restarts. If configured ...

7.5CVSS7.3AI score0.01054EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.33 views

F5 Networks BIG-IP : TMM vulnerability (K64208870)

Malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with the non-default 'normalize URI' configuration options used in iRules and/or BIG-IP LTM policies. CVE-2018-15319 Impact An attacker may be able to disrupt traffic or cause the...

7.8CVSS7.2AI score0.01859EPSS
Exploits0References2
Rows per page
Query Builder