193 matches found
CVE-2022-34862
CVE-2022-34862 affects BIG-IP TMM data normalization in LTM when processing undoc’d requests, causing TMM termination (DoS). Affected: BIG-IP versions 13.1.x (13.1.0–13.1.5), 14.1.x (14.1.0–14.1.4), 15.1.x (15.1.0–15.1.6.0/1), 16.1.x (16.1.0–16.1.3). Fixes are in 17.0.0 (for 16.x), 16.1.3.1 (for ...
CVE-2022-34651
CVE-2022-34651 affects BIG-IP TLS 1.3 in LTM when a TLS 1.3-enabled Client or Server SSL profile is on a virtual server and an iRule calls HTTP::respond. The TMM can terminate, causing DoS due to TMM restart. Affected branches include BIG-IP 16.1.0–16.1.3 (fixed in 16.1.3.1), 15.1.0–15.1.6 (fixed...
CVE-2022-33968 BIG-IP LTM and APM NTLM vulnerability CVE-2022-33968
In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, when an LTM monitor or APM SSO is configured on a virtual server, and NTLM challenge-response is in use, undisclosed traffic can cause a buffer over-read...
CVE-2022-32455
CVE-2022-32455 affects F5 BIG-IP TMM when a LTM Client SSL profile on a virtual server uses client certificate authentication with session tickets enabled. Undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate, resulting in a DoS as the TMM restarts. Affected branch...
PT-2022-22400 · F5 · Big-Ip
Name of the Vulnerable Software and Affected Versions: BIG-IP versions 13.1.x BIG-IP versions 14.1.x before 14.1.5 BIG-IP versions 15.1.x before 15.1.6.1 BIG-IP versions 16.1.x before 16.1.3.1 Description: When an LTM virtual server is configured to perform normalization, undisclosed requests can...
CVE-2022-33968
In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, when an LTM monitor or APM SSO is configured on a virtual server, and NTLM challenge-response is in use, undisclosed traffic can cause a buffer over-read...
F5 BIG-IP TMM Data Normalization Infinite Loop Vulnerability
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. An infinite loop vulnerability in F5 BIG-IP TMM data normalization stems from the fact that when an LTM virtual server is...
F5 BIG-IP TMM ClientSSL Profile Denial of Service Vulnerability
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A denial of service vulnerability exists in the F5 BIG-IP TMM ClientSSL profile, which stems from the vulnerability when the...
F5 Networks BIG-IP : BIG-IP LTM and APM NTLM vulnerability (K23465404)
The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.1 / 15.1.6.1 / 16.1.3.1 / 17.0.0.1 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K23465404 advisory. - In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before...
Code injection
On F5 BIG-IP LTM, Advanced WAF, ASM, or APM 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5, 14.1.x versions prior to 14.1.4.6, and all versions of 13.1.x, 12.1.x, and 11.6.x, when a virtual server is configured with HTTP, TCP on one side client/server, and DTLS on the other...
CVE-2022-29491
CVE-2022-29491 affects BIG-IP LTM, Advanced WAF, ASM, and APM. When a virtual server is configured with HTTP, TCP on one side and DTLS on the other, undisclosed requests can cause the TMM process to terminate, resulting in a DoS (service disruption) with potential data-plane impact. The vulnerabi...
CVE-2022-23021
On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate: HTTP redirect rule in an LTM policy, BIG-IP APM Access Profile, and Explicit HTTP Proxy in HTTP...
CVE-2020-27720
On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...
Design/Logic Flaw
On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...
CVE-2020-27721
In versions 16.0.0-16.0.0.1, 15.1.0-15.1.1, 14.1.0-14.1.3, 13.1.0-13.1.3.5, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, in a BIG-IP DNS / BIG-IP LTM GSLB deployment, under certain circumstances, the BIG-IP DNS system may stop using a BIG-IP LTM virtual server for DNS response...
CVE-2020-27720
CVE-2020-27720 affects F5 BIG-IP LTM/CGNAT where processing NAT66 traffic with Port Block Allocation (PBA) mode and SP-DAG enabled, with dag-ipv6-prefix-len under 128, may trigger a restart of the Traffic Management Microkernel (TMM). Affected versions include 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14...
CVE-2020-27720
On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...
Code injection
In versions 16.0.0-16.0.0.1, 15.1.0-15.1.1, 14.1.0-14.1.3, 13.1.0-13.1.3.5, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, in a BIG-IP DNS / BIG-IP LTM GSLB deployment, under certain circumstances, the BIG-IP DNS system may stop using a BIG-IP LTM virtual server for DNS response...
CVE-2020-27721
F5 BIG-IP DNS / LTM GSLB vulnerability CVE-2020-27721 can cause the BIG-IP DNS system to stop using a BIG-IP LTM virtual server for DNS responses, leading to DoS. Affected versions include 16.0.0–16.0.0.1, 15.1.0–15.1.1, 14.1.0–14.1.3, 13.1.0–13.1.3.5, 12.1.0–12.1.5.2, and 11.6.1–11.6.5.2. Root c...
F5 BIG-IP LTM/CGNAT Security Vulnerability
F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, load balancing, and other functions from F5 Corporation. A security vulnerability exists in F5 BIG-IP LTM/CGNAT, which can be exploited by an attacker to trigger a denial of...