5 matches found
F5 Networks BIG-IP : BIG-IP APM OAuth vulnerability (K20717585)
The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.3. It is, therefore, affected by a vulnerability as referenced in the K20717585 advisory. - On version 14.1.x before 14.1.5.3, and all versions of 13.1.x, when the BIG-IP APM system is configured with all the...
CVE-2023-22341
On version 14.1.x before 14.1.5.3, and all versions of 13.1.x, when the BIG-IP APM system is configured with all the following elements, undisclosed requests may cause the Traffic Management Microkernel TMM to terminate: An OAuth Server that references an OAuth Provider An OAuth profile with the...
CVE-2023-22341
CVE-2023-22341 affects the BIG-IP APM module. When configured with: (1) an OAuth Server referencing an OAuth Provider, (2) an OAuth profile with the Authorization Endpoint set to '/', and (3) an access profile referencing the above OAuth profile tied to an HTTPS virtual server, undisclosed reques...
CVE-2023-22341 BIG-IP APM OAuth vulnerability
On version 14.1.x before 14.1.5.3, and all versions of 13.1.x, when the BIG-IP APM system is configured with all the following elements, undisclosed requests may cause the Traffic Management Microkernel TMM to terminate: An OAuth Server that references an OAuth Provider An OAuth profile with the...
K20717585: BIG-IP APM OAuth vulnerability CVE-2023-22341
Security Advisory Description When the BIG-IP APM system is configured with all the following elements, undisclosed requests may cause the Traffic Management Microkernel TMM to terminate: An OAuth Server that references an OAuth Provider An OAuth profile with the Authorization Endpoint set to '/'...