903 matches found
ARIANNA: an Automatic Design Flow for Fabric Customization and EFPGA Redaction
In the modern global Integrated Circuit IC supply chain, protecting intellectual property IP is a complex challenge, and balancing IP loss risk and added cost for theft countermeasures is hard to achieve. Using embedded configurable logic allows designers to completely hide the functionality of...
CVE-2023-20259
A vulnerability in an API endpoint of multiple Cisco Unified Communications Products could allow an unauthenticated, remote attacker to cause high CPU utilization, which could impact access to the web-based management interface and cause delays with call processing. This API is not used for devic...
CVE-2022-23023
On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x, and BIG-IQ all versions of 8.x and 7.x, undisclosed requests by an authenticated iControl REST user can cause an increase in memory resource utilization. Note: Software...
CVE-2021-23049
On BIG-IP version 16.0.x before 16.0.1.2 and 15.1.x before 15.1.3, when the iRules RESOLVER::summarize command is used on a virtual server, undisclosed requests can cause an increase in Traffic Management Microkernel TMM memory utilization resulting in an out-of-memory condition and a...
CVE-2021-23042
On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, and 12.1.x before 12.1.6, when an HTTP profile is configured on a virtual server, undisclosed requests can cause a significant increase in system resource utilization. Note: Software versio...
CVE-2020-27715
On BIG-IP 15.1.0-15.1.0.5 and 14.1.0-14.1.3, crafted TLS request to the BIG-IP management interface via port 443 can cause high 100% CPU utilization by the httpd daemon...
CVE-2025-41399
When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-36504
When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-41399
When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-36504
When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-36504 BIG-IP HTTP/2 vulnerability
When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-36504 BIG-IP HTTP/2 vulnerability
When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-36504
CVE-2025-36504 affects BIG-IP when an HTTP/2 httprouter profile is configured on a virtual server. The issue can cause undisclosed responses that lead to increased memory/resource utilization, potentially degrading performance and causing DoS-like impact on the BIG-IP system. Security advisory K0...
CVE-2025-41399 SCTP Vulnerability
When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...
CVE-2025-41399
CVE-2025-41399 affects BIG-IP products when a Stream Control Transmission Protocol (SCTP) profile is configured on a virtual server, causing undisclosed requests to increase memory resource utilization and potentially degrade performance or cause DoS via a reset/restart of the TMM process. The Re...
K000140919: BIG-IP HTTP/2 vulnerability CVE-2025-36504
Security Advisory Description When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increase in memory resource utilization. CVE-2025-36504 Impact System performance can degrade until the Traffic Management Microkernel TMM process is either...
K000137709: SCTP vulnerability CVE-2025-41399
Security Advisory Description When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. CVE-2025-41399 Impact System performance can degrade until the Traffic Management Microkernel TMM...
F5 Networks BIG-IP : BIG-IP HTTP/2 vulnerability (K000140919)
The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.6 / 17.1.2. It is, therefore, affected by a vulnerability as referenced in the K000140919 advisory. When a BIG-IP HTTP/2 httprouter profile is configured on a virtual server, undisclosed responses can cause an increas...
PT-2025-20306 · F5 · Big-Ip +3
Name of the Vulnerable Software and Affected Versions: The product name cannot be determined. Description: When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Recommendations: At the...
F5 Networks BIG-IP : SCTP vulnerability (K000137709)
The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.9 / 16.1.4 / 17.1.1. It is, therefore, affected by a vulnerability as referenced in the K000137709 advisory. When a Stream Control Transmission Protocol SCTP profile is configured on a virtual server, undisclosed...