Lucene search
K

5 matches found

F5 Networks
F5 Networks
added 2023/02/21 6:54 p.m.54 views

K23465404: BIG-IP LTM and APM NTLM vulnerability CVE-2022-33968

Security Advisory Description When an LTM monitor or APM SSO is configured on a virtual server, and NTLM challenge-response is in use, undisclosed traffic can cause a buffer over-read. CVE-2022-33968 Impact If an attacker controls the server that handles monitor traffic or the APM SSO endpoint,...

4.9CVSS5.4AI score0.00461EPSS
Exploits0Affected Software13
OSV
OSV
added 2022/08/04 6:15 p.m.5 views

CVE-2022-33968

In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, when an LTM monitor or APM SSO is configured on a virtual server, and NTLM challenge-response is in use, undisclosed traffic can cause a buffer over-read...

4.9CVSS6AI score0.00461EPSS
Exploits0References1
CVE
CVE
added 2022/08/04 5:47 p.m.92 views

CVE-2022-33968

CVE-2022-33968 affects F5 BIG-IP LTM and APM NTLM: an undisclosed-traffic-induced buffer over-read when LTM monitors or APM SSO are configured on a virtual server and NTLM challenge-response is used. Affected: BIG-IP 13.1.x (all), 14.1.x (before 14.1.5.1), 15.1.x (before 15.1.6.1), 16.1.x (before...

4.9CVSS5.1AI score0.00461EPSS
Exploits0References1Affected Software11
Cvelist
Cvelist
added 2022/08/04 5:47 p.m.25 views

CVE-2022-33968 BIG-IP LTM and APM NTLM vulnerability CVE-2022-33968

In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, when an LTM monitor or APM SSO is configured on a virtual server, and NTLM challenge-response is in use, undisclosed traffic can cause a buffer over-read...

3.7CVSS5.7AI score0.00461EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/08/03 12:0 a.m.27 views

F5 Networks BIG-IP : BIG-IP LTM and APM NTLM vulnerability (K23465404)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.1 / 15.1.6.1 / 16.1.3.1 / 17.0.0.1 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K23465404 advisory. - In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before...

4.9CVSS5.8AI score0.00461EPSS
Exploits0References2
Rows per page
Query Builder