EUVD-2020-20224

Malware in sbrugna...

CVE-2020-27720

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...

CVE-2013-5560

The IPv6 implementation in Cisco Adaptive Security Appliance ASA Software 9.1.3 and earlier, when NAT64 or NAT66 is enabled, does not properly process NAT rules, which allows remote attackers to cause a denial of service device reload via crafted packets, aka Bug ID CSCue34342...

K04048104: CGNAT LSN vulnerability CVE-2020-27720

Security Advisory Description When processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may cause the Traffic Management Microkernel TMM to restart...

CVE-2020-27720

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...

Design/Logic Flaw

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...

CVE-2020-27720

On BIG-IP LTM/CGNAT version 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.3, and 13.1.0-13.1.3.5, when processing NAT66 traffic with Port Block Allocation PBA mode and SP-DAG enabled, and dag-ipv6-prefix-len configured with a value less than the default of 128, an undisclosed traffic pattern may...

CVE-2020-27720

CVE-2020-27720 affects F5 BIG-IP LTM/CGNAT where processing NAT66 traffic with Port Block Allocation (PBA) mode and SP-DAG enabled, with dag-ipv6-prefix-len under 128, may trigger a restart of the Traffic Management Microkernel (TMM). Affected versions include 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14...

F5 BIG-IP LTM/CGNAT Security Vulnerability

F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, load balancing, and other functions from F5 Corporation. A security vulnerability exists in F5 BIG-IP LTM/CGNAT, which can be exploited by an attacker to trigger a denial of...

CVE-2013-5560

The CVE-2013-5560 issue affects Cisco ASA Software versions 9.1.3 and earlier, arising from improper IPv6 NAT processing when NAT64 or NAT66 is enabled. This can allow remote attackers to trigger a denial of service by causing a device reload via crafted packets (Bug CSCue34342). The connected so...

CVE-2013-5560

The IPv6 implementation in Cisco Adaptive Security Appliance ASA Software 9.1.3 and earlier, when NAT64 or NAT66 is enabled, does not properly process NAT rules, which allows remote attackers to cause a denial of service device reload via crafted packets, aka Bug ID CSCue34342...

Cisco Adaptive Security Appliance IPv6 NAT Denial of Service Vulnerability

A vulnerability in the function that performs IP version 6 IPv6 Network Address Translation NAT for Cisco ASA Software could allow an unauthenticated, remote attacker to cause a reload of an affected system. The vulnerability is due to improper implementation of the logic that performs NAT when t...