Lucene search
K

158 matches found

Positive Technologies
Positive Technologies
added 2022/08/04 12:0 a.m.6 views

PT-2022-22648 · F5 · Big-Ip

Name of the Vulnerable Software and Affected Versions: BIG-IP versions 14.1.x through 14.1.5 BIG-IP versions 15.1.x through 15.1.6.1 BIG-IP versions 16.1.x through 16.1.2.2 Description: When the Message Routing MR Message Queuing Telemetry Transport MQTT profile is configured on a virtual server,...

7.5CVSS7.4AI score0.00668EPSS
Exploits0References3
CNVD
CNVD
added 2022/08/03 12:0 a.m.26 views

F5 BIG-IP APM and F5 SSL Orchestrator Denial of Service Vulnerability

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. A denial of service vulnerability exists in F5 BIG-IP APM and F5 SSL Orchestrator, which stems from the configuration of an...

7.5CVSS3AI score0.00668EPSS
Exploits0References1
CNNVD
CNNVD
added 2022/08/03 12:0 a.m.5 views

F5 BIG-IP 安全漏洞

F5 BIG-IP APM Edge Client for Windows is a client access control authentication access client application from F5. A denial of service vulnerability exists in F5 BIG-IP Message Routing MQTT, which stems from an undisclosed Message Routing MR Message Queue Telemetry Transport MQTT profile when...

7.5CVSS5.7AI score0.00668EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2022/08/03 12:0 a.m.21 views

F5 Networks BIG-IP : BIG-IP APM and F5 SSL Orchestrator vulnerability (K52534925)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5 / 15.1.6.1 / 16.1.3 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K52534925 advisory. - In BIG-IP Versions 16.1.x before 16.1.3, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when ...

7.5CVSS7.5AI score0.00668EPSS
Exploits0References2
CNVD
CNVD
added 2022/05/07 12:0 a.m.19 views

F5 BIG-IP Resource Management Error Vulnerability (CNVD-2022-77530)

F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing, etc. A resource management error vulnerability exists in F5 BIG-IP, which stems from an undisclosed request when configuring a DNS listener on a...

7.5CVSS2.4AI score0.00843EPSS
Exploits0References1
NVD
NVD
added 2022/05/05 5:15 p.m.21 views

CVE-2022-28701

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, when the stream profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

7.5CVSS0.00868EPSS
Exploits0References1
NVD
NVD
added 2022/05/05 5:15 p.m.32 views

CVE-2022-27182

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, and 14.1.x versions prior to 14.1.4.6, when BIG-IP packet filters are enabled and a virtual server is configured with the type set to Reject, undisclosed requests can cause an increase in memory resource utilizatio...

5.3CVSS0.0083EPSS
Exploits0References1
Prion
Prion
added 2022/05/05 5:15 p.m.21 views

Design/Logic Flaw

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, when the stream profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5CVSS7.4AI score0.00868EPSS
Exploits0References1Affected Software11
CVE
CVE
added 2022/05/05 4:35 p.m.127 views

CVE-2022-28701

CVE-2022-28701 (F5 BIG-IP Stream profile DoS) In F5 BIG-IP 16.1.x, when a stream profile is configured on a virtual server, certain undisclosed requests can cause memory resource utilization to spike, degrading system performance and potentially causing a TMM restart or DoS. The advisory confirms...

7.5CVSS7.5AI score0.00868EPSS
Exploits0References1Affected Software11
Cvelist
Cvelist
added 2022/05/05 4:9 p.m.37 views

CVE-2022-27189

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, 14.1.x versions prior to 14.1.4.6, 13.1.x versions prior to 13.1.5, and all versions of 12.1.x and 11.6.x, when an Internet Content Adaptation Protocol ICAP profile is configured on a virtual server, undisclosed...

7.5CVSS7.6AI score0.00868EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/05/05 4:8 p.m.32 views

CVE-2022-27182

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1, and 14.1.x versions prior to 14.1.4.6, when BIG-IP packet filters are enabled and a virtual server is configured with the type set to Reject, undisclosed requests can cause an increase in memory resource utilizatio...

5.3CVSS5.5AI score0.0083EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/05/05 12:0 a.m.27 views

F5 Networks BIG-IP : BIG-IP Stream profile vulnerability (K99123750)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.2.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K99123750 advisory. - On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, when the stream profile is configured on a virtual server,...

7.5CVSS7.5AI score0.00868EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/05 12:0 a.m.24 views

F5 Networks BIG-IP : BIG-IP ICAP profile vulnerability (K16187341)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.5 / 14.1.4.6 / 15.1.5.1 / 16.1.2.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K16187341 advisory. - On F5 BIG-IP 16.1.x versions prior to 16.1.2.2, 15.1.x versions prior to 15.1.5.1,...

7.5CVSS7.5AI score0.00868EPSS
Exploits0References2
NVD
NVD
added 2022/01/25 8:15 p.m.13 views

CVE-2022-23010

On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and 11.6.x, when a FastL4 profile and an HTTP profile are configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note:...

7.5CVSS0.00952EPSS
Exploits0References1
Prion
Prion
added 2022/01/25 8:15 p.m.15 views

Design/Logic Flaw

On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x, and BIG-IQ all versions of 8.x and 7.x, undisclosed requests by an authenticated iControl REST user can cause an increase in memory resource utilization. Note: Software...

4CVSS6.4AI score0.00895EPSS
Exploits0References1Affected Software15
Prion
Prion
added 2022/01/25 8:15 p.m.21 views

Design/Logic Flaw

On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x, 12.1.x, and 11.6.x, when a FastL4 profile and an HTTP profile are configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note:...

7.1CVSS7.5AI score0.00952EPSS
Exploits0References1Affected Software11
CVE
CVE
added 2022/01/25 7:11 p.m.95 views

CVE-2022-23019

CVE-2022-23019 affects F5 BIG-IP: when a message routing virtual server uses both Diameter Session and Router Profiles, undisclosed traffic can trigger increased memory resource utilization, potentially degrading performance. Publicly documented details across sources show the vulnerability statu...

7.5CVSS7.6AI score0.0092EPSS
Exploits0References1Affected Software11
Cvelist
Cvelist
added 2022/01/25 7:11 p.m.33 views

CVE-2022-23015

On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a Client SSL profile is configured on a virtual server with Client Certificate Authentication set to request/require and Session Ticket enabled and configured, processing SSL traffic can cause an increase i...

7.7AI score0.00629EPSS
Exploits0References1
CVE
CVE
added 2022/01/25 7:11 p.m.177 views

CVE-2022-23010

CVE-2022-23010 affects BIG-IP: when a FastL4 profile and an HTTP profile are on a virtual server, undisclosed requests can cause memory resource utilization to increase, potentially impacting performance. Affects 16.x (16.0.0–16.0.1), 15.x (15.1.0–15.1.4, fixed in 15.1.4.1), 14.x (14.1.0–14.1.4, ...

7.5CVSS7.6AI score0.00952EPSS
Exploits0References1Affected Software11
Tenable Nessus
Tenable Nessus
added 2022/01/19 12:0 a.m.21 views

F5 Networks BIG-IP : BIG-IP Client SSL profile vulnerability (K08476614)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.4.5 / 15.1.4.1 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K08476614 advisory. - On BIG-IP versions 16.x before 16.1.0, 15.1.x before 15.1.4.1, and 14.1.2.6-14.1.4.4, when a Client SSL...

7.5CVSS7.4AI score0.00629EPSS
Exploits0References2
Rows per page
Query Builder