CVE-2022-23016

On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with TLS 1.3 is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS a...

CVE-2022-23022

On BIG-IP version 16.1.x before 16.1.2, when an HTTP profile is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2022-23016

On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP SSL Forward Proxy with TLS 1.3 is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS a...

CVE-2022-23014

On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP APM portal access is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not...

CVE-2022-23014

On versions 16.1.x before 16.1.2 and 15.1.x before 15.1.4.1, when BIG-IP APM portal access is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not...

CVE-2022-23024

On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.4.1, 14.1.x before 14.1.4.2, and all versions of 13.1.x, when the IPsec application layer gateway ALG logging profile is configured on an IPsec ALG virtual server, undisclosed IPsec traffic can cause the Traffic Management Microkernel T...

Design/Logic Flaw

On BIG-IP version 16.1.x before 16.1.2, when the 'Respond on Error' setting is enabled on the Request Logging profile and configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical...

F5 Networks BIG-IP : TMM vulnerability (K57111075)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K57111075 advisory. - On BIG-IP version 16.1.x before 16.1.2, when any of the following configurations are configured on a virtual server,...

F5 BIG-IP Traffic Management Microkernel Buffer Overflow

The Traffic Management Microkernel of BIG-IP ASM Risk Engine has a buffer overflow vulnerability, leading to a bypassing of URL-based access controls...

Huawei HarmonyOS eID component memory out-of-bounds write vulnerability

Huawei HarmonyOS is an operating system from Huawei China. A security vulnerability exists in the eID component of Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit this vulnerability to compromise confidentiality...

Huawei HarmonyOS Buffer Overflow Vulnerability (CNVD-2022-12806)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS 2.0 Bone Voice TA. Successful exploitation of this vulnerability could result in compromised...

Huawei HarmonyOS memory uninitialized usage vulnerability

Huawei HarmonyOS is an operating system from Huawei China. A security vulnerability exists in the eID component of Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit this vulnerability to compromise confidentiality...

Huawei HarmonyOS design flaw vulnerability

Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based, distributed operating system. Huawei HarmonyOS contains a security vulnerability that could be exploited by attackers to compromise confidentiality...

Huawei HarmonyOS has an unspecified vulnerability (CNVD-2022-17716)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. A security vulnerability exists in Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit this vulnerability to cause an integrity impact...

Huawei HarmonyOS Input Validation Error Vulnerability (CNVD-2022-17714)

Huawei HarmonyOS is an operating system from Huawei China. It provides a microkernel-based distributed operating system. Huawei HarmonyOS has a security vulnerability that could be exploited by attackers to compromise product confidentiality and availability...

Huawei HarmonyOS system or configuration settings external control vulnerability

Huawei HarmonyOS is an operating system from Huawei of China. A security vulnerability exists in Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit this vulnerability to compromise confidentiality...

Huawei HarmonyOS null pointer dereference vulnerability (CNVD-2022-17707)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company that provides a microkernel-based distributed operating system. A security vulnerability exists in Huawei HarmonyOS SensorhubMain, which provides a microkernel-based, full-scenario distributed operating system. An attacker cou...

Unspecified vulnerability in Huawei HarmonyOS (CNVD-2022-08455)

Huawei HarmonyOS is an operating system from Huawei China. It provides a full-scenario distributed operating system based on a microkernel. A security vulnerability exists in Huawei HarmonyOS HwNearbyMain. An attacker can exploit the vulnerability to cause a process to restart...

Huawei HarmonyOS Out-of-Bounds Read Vulnerability (CNVD-2022-17715)

Huawei HarmonyOS is an operating system from Huawei, a Chinese company. A security vulnerability exists in Huawei HarmonyOS, which provides a microkernel-based, fully-scoped distributed operating system. An attacker could exploit this vulnerability to compromise confidentiality...

Huawei HarmonyOS VoWifi Component VC Access Vulnerability

Huawei HarmonyOS is an operating system from Huawei China. A vulnerability exists in the Huawei HarmonyOS VoWifi component, which provides a microkernel-based, full-scenario distributed operating system. An attacker could exploit this vulnerability to potentially compromise confidentiality...