CVE-2022-41770

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ all versions of 8.x and 7.x, an authenticated iControl REST user can cause an increase in memory resource utilization, via undisclosed requests...

Design/Logic Flaw

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.2, 15.1.x before 15.1.7, 14.1.x before 14.1.5.2, and 13.1.x before 13.1.5.1, when a sideband iRule is configured on a virtual server, undisclosed traffic can cause an increase in memory resource utilization...

Design/Logic Flaw

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ all versions of 8.x and 7.x, an authenticated iControl REST user can cause an increase in memory resource utilization, via undisclosed requests...

Design/Logic Flaw

In versions 16.1.x before 16.1.3.2 and 15.1.x before 15.1.5.1, when BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization...

Design/Logic Flaw

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and 13.1.x before 13.1.5.1, when a SIP profile is configured on a virtual server, undisclosed messages can cause an increase in memory resource utilization...

CVE-2022-41832

CVE-2022-41832 (BIG-IP SIP profile vulnerability) affects BIG-IP products with a SIP profile on a virtual server, where undisclosed SIP messages can drive memory resource usage up, potentially causing DoS. Affected versions and fixed releases per F5 advisory K10347453: vulnerable on BIG-IP 17.0.x...

CVE-2022-41806 BIG-IP AFM NAT64 Policy Vulnerability CVE-2022-41806

In versions 16.1.x before 16.1.3.2 and 15.1.x before 15.1.5.1, when BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization...

CVE-2022-41770 BIG-IP and BIG-IQ iControl REST vulnerability CVE-2022-41770

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ all versions of 8.x and 7.x, an authenticated iControl REST user can cause an increase in memory resource utilization, via undisclosed requests...

CVE-2022-41770

CVE-2022-41770 affects BIG-IP and BIG-IQ iControl REST. An authenticated iControl REST user can cause memory resource usage to spike via undisclosed requests, potentially enabling DoS. Affected: BIG-IP (all modules) 13.1.x; 14.1.x before 14.1.5.1; 15.1.x before 15.1.7; 16.1.x before 16.1.3.1; 17....

CVE-2022-41770 BIG-IP and BIG-IQ iControl REST vulnerability CVE-2022-41770

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ all versions of 8.x and 7.x, an authenticated iControl REST user can cause an increase in memory resource utilization, via undisclosed requests...

CVE-2022-41624 BIG-IP iRules vulnerability CVE-2022-41624

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.2, 15.1.x before 15.1.7, 14.1.x before 14.1.5.2, and 13.1.x before 13.1.5.1, when a sideband iRule is configured on a virtual server, undisclosed traffic can cause an increase in memory resource utilization...

CVE-2022-41624

CVE-2022-41624 affects BIG-IP iRules vulnerability. When a sideband iRule is configured on a virtual server, undisclosed traffic can cause memory resource utilization to rise, potentially degrading system performance. Affected BIG-IP versions (per advisory K43024307) include: 17.0.x before 17.0.0...

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform that integrates network traffic management, application security management, load balancing, and other features from F5 USA. A security vulnerability exists in F5 BIG-IP versions 17.0.x through 17.0.0.1 prior, 16.1.x through 16.1.3.2 prior, 15.1.x...

F5 Networks BIG-IP : BIG-IP iRules vulnerability (K43024307)

The version of F5 Networks BIG-IP installed on the remote host is prior to 13.1.5.1 / 14.1.5.2 / 15.1.7 / 16.1.3.2 / 17.0.0.1 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K43024307 advisory. - In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.2, 15.1....

PT-2022-26062 · F5 · F5 Big-Ip +1

Name of the Vulnerable Software and Affected Versions: F5 BIG-IP versions 13.1.x through 17.0.x before 17.0.0.1 F5 BIG-IP versions 14.1.x through 14.1.x before 14.1.5.1 F5 BIG-IP versions 15.1.x through 15.1.x before 15.1.7 F5 BIG-IP versions 16.1.x through 16.1.x before 16.1.3.1 F5 BIG-IQ versio...

F5 Networks BIG-IP : BIG-IP and BIG-IQ iControl REST vulnerability (K22505850)

The version of F5 Networks BIG-IP installed on the remote host is prior to 14.1.5.1 / 15.1.7 / 16.1.3.1 / 17.0.0.1 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K22505850 advisory. An authenticated iControl REST user can cause an increase in memory resource...

F5 Networks BIG-IP : BIG-IP AFM NAT64 policy vulnerability (K00721320)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.5.1 / 16.1.3.2 / 17.0.0. It is, therefore, affected by a vulnerability as referenced in the K00721320 advisory. - In versions 16.1.x before 16.1.3.2 and 15.1.x before 15.1.5.1, when BIG-IP AFM Network Address...

Design/Logic Flaw

An Improper Check for Unusual or Exceptional Conditions vulnerability in the Packet Forwarding Engine PFE of Juniper Networks Junos OS Evolved on ACX7000 Series allows an unauthenticated network-based attacker to cause a partial Denial of Service DoS. On receipt of specific IPv6 transit traffic,...

ROS-20221013-01

A vulnerability in the D-Bus interprocess communication system is related to the reachability of an assertion in debug builds caused by a syntactically invalid type signature with improperly nested brackets and curly braces. Exploitation of the vulnerability could allow an attacker to execute a...

PT-2022-6673 · Juniper Networks · Junos Evolved

Name of the Vulnerable Software and Affected Versions: Juniper Networks Junos OS Evolved on ACX7000 Series versions 21.1-EVO prior to 21.1R3-S2-EVO Juniper Networks Junos OS Evolved on ACX7000 Series versions 21.2-EVO prior to 21.2R3-S2-EVO Juniper Networks Junos OS Evolved on ACX7000 Series...