EUVD-2020-27096

Malware in sbrugna...

K82530456: BIG-IP Diameter vulnerability CVE-2020-5942

Security Advisory Description When processing Capabilities-Exchange-Answer CEA packets with certain attributes from the Policy and Charging Rules Function PCRF server, the Traffic Management Microkernel TMM may generate a core file and restart. CVE-2020-5942 Impact This vulnerability affects only...

CVE-2020-5942

In BIG-IP PEM versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when processing Capabilities-Exchange-Answer CEA packets with certain attributes from the Policy and Charging Rules Function PCRF server, the Traffic Management...

Design/Logic Flaw

In BIG-IP PEM versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when processing Capabilities-Exchange-Answer CEA packets with certain attributes from the Policy and Charging Rules Function PCRF server, the Traffic Management...

CVE-2020-5942

CVE-2020-5942 affects BIG-IP PEM in multiple legacy branches (11.x–16.x) where processing Capabilities-Exchange-Answer (CEA) packets from PCRF can cause TMM to write a core file and restart, disrupting traffic and triggering HA failover. Concrete affected versions and fixes are documented in F5 K...

CVE-2020-5942

In BIG-IP PEM versions 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, 14.1.0-14.1.2.7, 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when processing Capabilities-Exchange-Answer CEA packets with certain attributes from the Policy and Charging Rules Function PCRF server, the Traffic Management...

F5 Networks BIG-IP : BIG-IP Diameter vulnerability (K82530456)

When processing Capabilities-Exchange-Answer CEA packets withcertain attributes from the Policy and Charging Rules Function PCRF server, the Traffic Management Microkernel TMM may generate a core file and restart.CVE-2020-5942 Impact This vulnerability affects only virtualservers configured with...

Design/Logic Flaw

A vulnerability in the Policy and Charging Rules Function PCRF of the Cisco Policy Suite CPS could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The attacker would also have to have access ...

CVE-2018-0089

A vulnerability in the Policy and Charging Rules Function PCRF of the Cisco Policy Suite CPS could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The attacker would also have to have access ...

CVE-2018-0089

The CVE-2018-0089 issue affects Cisco Policy Suite (CPS) PCRF. Affected component: PCRF within CPS. Root cause: incorrect permissions on certain system files, failing to protect sensitive data at rest. Impact: unauthenticated, remote attacker with access to the internal VLAN could request/view in...

CVE-2018-0089

A vulnerability in the Policy and Charging Rules Function PCRF of the Cisco Policy Suite CPS could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The attacker would also have to have access ...

Cisco Policy Suite Unauthenticated Information Disclosure Vulnerability

A vulnerability in the Policy and Charging Rules Function PCRF of the Cisco Policy Suite CPS could allow an unauthenticated, remote attacker to access sensitive data. The attacker could use this information to conduct additional reconnaissance attacks. The attacker would also have to have access ...