Lucene search
K

5 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:55 p.m.35 views

K27617652: BIG-IP APM OAuth failure response message vulnerability CVE-2018-15335

Security Advisory Description When APM is deployed as an OAuth Resource Server, APM becomes a client application to an external OAuth authorization server. In certain cases when communication between the BIG-IP APM and the OAuth authorization server is lost, APM may not display the intended messa...

5.9CVSS6AI score0.01427EPSS
Exploits0
OSV
OSV
added 2018/12/28 3:29 p.m.1 views

CVE-2018-15335

When APM 13.0.0-13.1.x is deployed as an OAuth Resource Server, APM becomes a client application to an external OAuth authorization server. In certain cases when communication between the BIG-IP APM and the OAuth authorization server is lost, APM may not display the intended message in the failur...

5.9CVSS5.8AI score
Exploits0References2
Cvelist
Cvelist
added 2018/12/28 3:0 p.m.27 views

CVE-2018-15335

When APM 13.0.0-13.1.x is deployed as an OAuth Resource Server, APM becomes a client application to an external OAuth authorization server. In certain cases when communication between the BIG-IP APM and the OAuth authorization server is lost, APM may not display the intended message in the failur...

5.7AI score0.01427EPSS
Exploits0References2
CVE
CVE
added 2018/12/28 3:0 p.m.66 views

CVE-2018-15335

The CVE-2018-15335 issue affects BIG-IP APM when deployed as an OAuth Resource Server: in affected 13.0.0–13.1.1 versions, the failure response may omit intended diagnostic content after lost communication with the external OAuth server. F5’s security advisory indicates that for BIG-IP APM, a fix...

5.9CVSS5.6AI score0.01427EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/12/28 12:0 a.m.43 views

F5 Networks BIG-IP : BIG-IP APM OAuth failure response message vulnerability (K27617652)

When APM is deployed as an OAuth Resource Server, APM becomes a client application to an external OAuth authorization server. In certain cases when communication between the BIG-IP APM and the OAuth authorization server is lost, APM may not display the intended message in the failure response...

5.9CVSS6AI score0.01427EPSS
Exploits0References2
Rows per page
Query Builder