Lucene search
+L

70 matches found

Vulnrichment
Vulnrichment
added 2025/02/05 5:31 p.m.9 views

CVE-2025-21091 BIG-IP SNMP vulnerability

When SNMP v1 or v2c are disabled on the BIG-IP, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS6.9AI score0.00436EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2025/02/05 1:45 p.m.13 views

K000139778: BIG-IP PEM vulnerability CVE-2025-22891

Security Advisory Description When a BIG-IP PEM Control Plane Listener virtual server is configured with a Diameter Endpoint profile, undisclosed traffic can cause the virtual server to stop processing new client connections and cause an increase in memory resource utilization. CVE-2025-22891...

8.7CVSS6.4AI score0.00396EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/02/05 12:0 a.m.6 views

F5 Networks BIG-IP : BIG-IP message routing vulnerability (K000140947)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.6 / 17.1.2 / Hotfix- BIGIP-15.1.10.6.0.11.6-ENG.iso / Hotfix-BIGIP-16.1.5.2.0.7.5-ENG.iso. It is, therefore, affected by a vulnerability as referenced in the K000140947 advisory. When a BIG-IP message routing profile ...

8.9CVSS6AI score0.00393EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/05 12:0 a.m.7 views

F5 Networks BIG-IP : BIG-IP PEM vulnerability (K000139778)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.5 / 17.1.2 / Hotfix- BIGIP-15.1.10.6.0.11.6-ENG.iso. It is, therefore, affected by a vulnerability as referenced in the K000139778 advisory. When a BIG-IP PEMControl Plane Listenervirtual server is configured with...

8.7CVSS6AI score0.00396EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/05 12:0 a.m.8 views

F5 Networks BIG-IP : BIG-IP SNMP vulnerability (K000140933)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.6 / 17.1.2 / Hotfix- BIGIP-15.1.10.6.0.11.6-ENG.iso / Hotfix-BIGIP-16.1.5.2.0.7.5-ENG.iso. It is, therefore, affected by a vulnerability as referenced in the K000140933 advisory. When SNMP v1 or v2c are disabled on th...

8.7CVSS6AI score0.00436EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2024/10/28 7:37 p.m.38 views

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in Nginx

Summary IBM Watson Discovery for IBM Cloud Pak for Data contains a vulnerable version of Nginx Vulnerability Details CVEID:CVE-2024-7646 DESCRIPTION: Kubernetes ingress-nginx could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by an annotation validatio...

8.8CVSS7.9AI score0.27018EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2024/08/15 12:0 a.m.31 views

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K000138833)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.5. It is, therefore, affected by a vulnerability as referenced in the K000138833 advisory. In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition VEs using Intel E810 SR-IOV NIC,...

8.7CVSS5.6AI score0.00481EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2024/05/16 2:27 a.m.49 views

K000139630: Expat vulnerability CVE-2023-52425

Security Advisory Description libexpat through 2.5.0 allows a denial of service resource consumption because many full reparsings are required in the case of a large token for which multiple buffer fills are needed. CVE-2023-52425 Impact There is no impact; F5 products are not affected by this...

7.5CVSS7.2AI score0.01815EPSS
Exploits1
Prion
Prion
added 2024/02/14 5:15 p.m.26 views

Code injection

When a BIG-IP ASM/Advanced WAF security policy is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5CVSS7.2AI score0.00515EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2023/10/13 12:0 a.m.25 views

F5 Networks BIG-IP TCP profile vulnerability (K000134652)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.0 / 16.1.4 / 15.1.9. It is, therefore, affected by a vulnerability as referenced in the K000134652 advisory. When TCP Verified Accept is enabled on a TCP profile that is configured on a virtual server, undisclosed...

7.5CVSS7.4AI score0.00538EPSS
Exploits0References2
Cvelist
Cvelist
added 2023/10/10 12:33 p.m.22 views

CVE-2023-40542 BIG-IP TCP Profile vulnerability

When TCP Verified Accept is enabled on a TCP profile that is configured on a Virtual Server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

7.5CVSS7.7AI score0.00538EPSS
Exploits0References1
F5 Networks
F5 Networks
added 2023/10/10 10:23 a.m.26 views

K000134652: BIG-IP TCP profile vulnerability CVE-2023-40542

Security Advisory Description When TCP Verified Accept is enabled on a TCP profile that is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. CVE-2023-40542 Impact System performance can degrade until the Traffic Management Microkernel TMM...

7.5CVSS7.5AI score0.00538EPSS
Exploits0Affected Software12
Tenable Nessus
Tenable Nessus
added 2023/06/23 12:0 a.m.33 views

F5 Networks BIG-IP : BIG-IP HTTP/2 profile vulnerability (K56676554)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.3.3 / 17.0.0.2 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K56676554 advisory. - On BIG-IP versions 17.0.x before 17.0.0.2 and 16.1.x before 16.1.3.3, and BIG-IP SPK starting in versio...

7.5CVSS7.4AI score0.00626EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2023/05/25 12:0 a.m.33 views

F5 Networks BIG-IP : BIG-IP Packet Filters vulnerability (K31856317)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.4.6 / 15.1.5.1 / 16.1.2.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K31856317 advisory. - On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, and 14.1....

5.3CVSS5.8AI score0.0083EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2023/02/21 6:55 p.m.51 views

K23454411: DNS profile vulnerability CVE-2022-26372

Security Advisory Description When a DNS listener is configured on a virtual server with DNS queueing default, undisclosed requests can cause an increase in memory resource utilization. CVE-2022-26372 Impact System performance can degrade until the Traffic Management Microkernel TMM process is...

7.5CVSS7.4AI score0.00843EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 6:46 p.m.31 views

K00721320: BIG-IP AFM NAT64 policy vulnerability CVE-2022-41806

Security Advisory Description When a BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. CVE-2022-41806 Impact System performance can degrade until the TMM...

7.5CVSS7.5AI score0.00616EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 6:34 p.m.39 views

K50343028: BIG-IP FastL4 profile vulnerability CVE-2022-23029

Security Advisory Description When a FastL4 profile is configured on a virtual server, undisclosed traffic can cause an increase in memory resource utilization. CVE-2022-23029 Impact System performance degradation can occur until the process is either forced to restart or manually restarted. This...

5.3CVSS5.5AI score0.00729EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 6:33 p.m.46 views

K52534925: BIG-IP APM and F5 SSL Orchestrator vulnerability CVE-2022-33203

Security Advisory Description When a BIG-IP APM access policy with Service Connect agent is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. CVE-2022-33203 Impact System performance can degrade until the Traffic Management Microkernel TMM...

7.5CVSS7.4AI score0.00681EPSS
Exploits0Affected Software2
Vulnrichment
Vulnrichment
added 2023/02/01 5:56 p.m.9 views

CVE-2023-23552 BIG-IP Advanced WAF and ASM vulnerability

On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.0 before 15.1.8, 14.1.x before 14.1.5.3, and all versions of 13.1.x, when a BIG-IP Advanced WAF or BIG-IP ASM security policy is configured on a virtual server, undisclosed requests can cause an increase in memory resource...

7.5CVSS7.3AI score0.01545EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/02/01 5:56 p.m.9 views

CVE-2023-22664 BIG-IP HTTP/2 profile vulnerability

On BIG-IP versions 17.0.x before 17.0.0.2 and 16.1.x before 16.1.3.3, and BIG-IP SPK starting in version 1.6.0, when a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note:...

7.5CVSS7.2AI score0.00626EPSS
Exploits0References1
Rows per page
Query Builder