F5 BIG-IP Edge Client Windows Component Installer < 7.2.4.1 Improper Certificate Validation (K000132539)

The version of the Big-IP Edge Client Windows Component Installer installed on the remote Windows host is before 7.2.4.1. An improper certificate validation vulnerability exists in BIG-IP Edge Client for Windows and macOS and may allow an attacker to impersonate a BIG-IP APM system. CVE-2023-2446...

F5 Networks BIG-IP : FRF.16 parser vulnerability (K04367730)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.4.1 / 14.1.3.1 / 15.1.3 / 16.0.0. It is, therefore, affected by a vulnerability as referenced in the K04367730 advisory. The FRF.16 parser in tcpdump before 4.9.3 has a buffer over-read in print-...

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K19361245)

The version of F5 Networks BIG-IP installed on the remote host is prior to 11.5.6 / 11.6.2 / 12.1.3 / 13.0.0. It is, therefore, affected by a vulnerability as referenced in the K19361245 advisory. - In F5 BIG-IP 12.0.0-12.1.2, 11.6.0-11.6.1, 11.5.1-11.5.5, or 11.2.1 there is a vulnerability in TM...

F5 Networks BIG-IP : vCMP Cavium Nitrox SSL hardware accelerator vulnerability (K52521791)

vCMP guests running on VIPRION 2100, 4200 and 4300 series blades cannot correctly decrypt ciphertext from established SSL sessions with small MTU. CVE-2018-5507 Impact BIG-IP The affected SSL connections are terminated unexpectedly. ARX / BIG-IQ / Enterprise Manager / F5 iWorkflow / LineRate /...

F5 Networks BIG-IP : glibc vulnerability (K31211252)

Multiple stack-based buffer overflows in the GNU C Library aka glibc or libc6 before 2.23 allow context-dependent attackers to cause a denial of service application crash or possibly execute arbitrary code via a long argument to the 1 nan, 2 nanf, or 3 nanl function. CVE-2014-9761 C Tenable Netwo...

F5 Networks BIG-IP : NTP vulnerability (K32262483)

The mx4200send function in the legacy MX4200 refclock in NTP before 4.2.8p10 and 4.3.x before 4.3.94 does not properly handle the return value of the snprintf function, which allows local users to execute arbitrary code via unspecified vectors, which trigger an out-of-bounds memory write...

F5 Networks BIG-IP : Grep vulnerability (K69662152)

Multiple integer overflows in GNU Grep before 2.11 might allow context-dependent attackers to execute arbitrary code via vectors involving a long input line that triggers a heap-based buffer overflow. CVE-2012-5667 C Tenable Network Security, Inc. The descriptive text and package checks in this...

F5 Networks BIG-IP : Oracle Java vulnerability (K25075696)

Unspecified vulnerability in Oracle Java SE 6u115, 7u101, and 8u92; Java SE Embedded 8u91; and JRockit R28.3.10 allows remote attackers to affect availability via vectors related to JAXP, a different vulnerability than CVE-2016-3508. CVE-2016-3500 C Tenable Network Security, Inc. The descriptive...

F5 Networks BIG-IP : glibc vulnerability (SOL09408132)

Integer overflow in posix/fnmatch.c in the GNU C Library aka glibc or libc6 2.13 and earlier allows context-dependent attackers to cause a denial of service application crash via a long UTF8 string that is used in an fnmatch call with a crafted pattern argument, a different vulnerability than...

F5 Networks BIG-IP : NTP vulnerability (SOL15935)

util/ntp-keygen.c in ntp-keygen in NTP before 4.2.7p230 uses a weak RNG seed, which makes it easier for remote attackers to defeat cryptographic protection mechanisms via a brute-force attack. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted...

F5 Networks BIG-IP : libpng out-of-bounds read vulnerability (SOL21057235)

The pngconverttorfc1123 function in png.c in libpng 1.0.x before 1.0.64, 1.2.x before 1.2.54, and 1.4.x before 1.4.17 allows remote attackers to obtain sensitive process memory information via crafted tIME chunk data in an image file, which triggers an out-of-bounds read. C Tenable Network...

F5 Networks BIG-IP : NTP vulnerability (K17525)

The datalen parameter in the refclock driver in NTP 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77 allows remote attackers to execute arbitrary code or cause a denial of service crash via a negative input value. CVE-2015-7853 Impact Running a custom refclock driver in ntpd could overflow a data...

F5 Networks BIG-IP : NTP vulnerability (K71245322)

NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero. CVE-2015-8138 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks...

F5 Networks BIG-IP : BDF parsing vulnerability (K15095307)

The bdfparseglyphs function in FreeType before 2.4.11 allows context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via vectors related to BDF fonts and an incorrect calculation that triggers an out-of-bounds read. CVE-2012-5669 C Tenable Network...

F5 Networks BIG-IP : OpenSSL vulnerability (K16323)

Use-after-free vulnerability in the d2iECPrivateKey function in crypto/ec/ecasn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service memory corruption and application crash or possibly have...

F5 Networks BIG-IP : D-Bus vulnerability (SOL17256)

The busconnectionscheckreply function in config-parser.c in D-Bus before 1.6.24 and 1.8.x before 1.8.8 allows local users to cause a denial of service CPU consumption via a large number of method calls. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were...

F5 Networks BIG-IP : BIG-IP Configuration utility vulnerability (K17253)

Directory traversal vulnerability in the configuration utility in F5 BIG-IP before 12.0.0 and Enterprise Manager 3.0.0 through 3.1.1 allows remote authenticated users to access arbitrary files in the web root via unspecified vectors. CVE-2015-4040 Impact An authenticated user is able to traverse...

F5 Networks BIG-IP : Node.js vulnerability (SOL17238)

The Utf8DecoderBase::WriteUtf16Slow function in unicode-decoder.cc in Google V8, as used in Node.js before 0.12.6, io.js before 1.8.3 and 2.x before 2.3.3, and other products, does not verify that there is memory available for a UTF-16 surrogate pair, which allows remote attackers to cause a deni...

F5 Networks BIG-IP : Python vulnerability (K16398)

Buffer overflow in the repr function in Python 2.3 through 2.6 before 20060822 allows context-dependent attackers to cause a denial of service and possibly execute arbitrary code via crafted wide character UTF-32/UCS-4 strings to certain scripts. CVE-2006-4980 Impact An attacker may be able to...

F5 Networks BIG-IP : Hosts may generate weak RSA keys under low entropy conditions (SOL13607)

A recent study, linked in the Supplemental Information section, has revealed that when a system generates new RSA keys under low-entropy conditions, such as during the first system boot, the resulting keys may not be cryptographically strong. C Tenable Network Security, Inc. The descriptive text...