The vulnerability of the Network Address Translation (NAT) technology implementation in the FastL4 network interface card of the BIG-IP Advanced Firewall Manager virtual server allows a attacker to cause a service failure.

The vulnerability of the Network Address Translation NAT technology implemented in the FastL4 network interface card of the BIG-IP Advanced Firewall Manager virtual server relates to the use of an uninitialized resource. Exploiting this vulnerability could allow a malicious actor to cause a servi...

CVE-2023-22418 BIG-IP APM virtual server vulnerability

On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.7, 14.1.x before 14.1.5.3, and all versions of 13.1.x, an open redirect vulnerability exists on virtual servers enabled with a BIG-IP APM access policy. This vulnerability allows an unauthenticated malicious attacker t...

Code injection

On BIG-IP 11.5.1-11.5.4, 11.6.1, and 12.1.0, a virtual server configured with a Client SSL profile may be vulnerable to a chosen ciphertext attack against CBC ciphers. When exploited, this may result in plaintext recovery of encrypted messages through a man-in-the-middle MITM attack, despite the...