Lucene search
K

6392 matches found

F5 Networks
F5 Networks
•added 2015/11/03 12:0 a.m.•75 views

SOL17541 - Linux kernel vulnerability CVE-2015-2150

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

4.9CVSS3.4AI score0.00534EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2015/09/08 12:0 a.m.•75 views

SOL17237 - Linux kernel vulnerability CVE-2014-7822

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...

7.2CVSS0.9AI score0.01176EPSS
Exploits2References7
F5 Networks
F5 Networks
•added 2015/02/12 12:0 a.m.•75 views

SOL16122 - Linux kernel vulnerability CVE-2014-9322

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

7.8CVSS1.4AI score0.01447EPSS
Exploits8References5
F5 Networks
F5 Networks
•added 2015/01/21 12:0 a.m.•75 views

SOL16011 - Linux kernel vulnerability CVE-2012-6657

The socksetsockopt function in net/core/sock.c in the Linux kernel before 3.5.7 does not ensure that a keepalive action is associated with a stream socket, which allows local users to cause a denial of service system crash by leveraging the ability to create a raw socket. CVE-2012-6657...

4.9CVSS6.7AI score0.0053EPSS
Exploits1References6
F5 Networks
F5 Networks
•added 2013/08/07 12:0 a.m.•75 views

SOL14574 - PHP vulnerability CVE-2012-1172

PHP has been cited with the following vulnerability, which may be locally exploitable on some F5 products: The file-upload implementation in rfc1867.c in PHP before 5.4.0 does not properly handle invalid open square bracket characters in name values, which makes it easier for attackers to cause a...

5.8CVSS9.2AI score0.06365EPSS
Exploits2References8
F5 Networks
F5 Networks
•added 2013/06/06 12:0 a.m.•75 views

SOL14445 - Linux kernel vulnerability CVE-2013-2094

Vulnerability Recommended Actions To mitigate this vulnerability, you can enable Appliance mode for vulnerable BIG-IP versions. For information about Appliance mode, refer to the following article: Impact of action: Appliance mode is designed to meet the needs of customers in especially sensitive...

8.4CVSS2.9AI score0.47709EPSS
Exploits15References4
F5 Networks
F5 Networks
•added 2012/06/12 12:0 a.m.•75 views

SOL13660 - BIND vulnerability CVE-2012-1667

BIG-IP 9.4.8 HF6 contains a patch backported from BIND 9.6 to BIND 9.4. However, the BIND version string was not updated to indicate a change was made. Recommended Action To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the...

8.5CVSS0.7AI score0.13405EPSS
Exploits1
F5 Networks
F5 Networks
•added 2007/05/16 12:0 a.m.•75 views

SOL4583 - Insufficient validation of ICMP error messages - VU#222750 / CVE-2004-0790

This vulnerability describes the use of spoofed ICMP packets to affect existing TCP connections. An attacker could cause a TCP connection to be closed or slowed by interfering with the Path MTU Discovery process or by generating one of the following spoofed ICMP messages: Destination unreachable...

5CVSS1.9AI score0.80675EPSS
Exploits10
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•74 views

K93951507: Multiple Samba vulnerabilities

Security Advisory Description CVE-2020-1472 An elevation of privilege vulnerability exists when an attacker establishes a vulnerable Netlogon secure channel connection to a domain controller, using the Netlogon Remote Protocol MS-NRPC, aka 'Netlogon Elevation of Privilege Vulnerability'...

10CVSS7.5AI score0.99512EPSS
Exploits75
F5 Networks
F5 Networks
•added 2023/02/21 7:52 p.m.•74 views

K16009: OpenSSH vulnerability CVE-2014-9278

Security Advisory Description The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which might bypass intended...

4CVSS6.4AI score0.01833EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:50 p.m.•74 views

K16993: PHP vulnerabilities CVE-2015-4025 and CVE-2015-4026

Security Advisory Description CVE-2015-4025 PHP before 5.4.41, 5.5.x before 5.5.25, and 5.6.x before 5.6.9 truncates a pathname upon encountering a \x00 character in certain situations, which allows remote attackers to bypass intended extension restrictions and access files or directories with...

7.5CVSS8.3AI score0.20233EPSS
Exploits1Affected Software18
F5 Networks
F5 Networks
•added 2023/02/21 7:31 p.m.•74 views

K16350: Samba vulnerability CVE-2015-0240

Security Advisory Description The Netlogon server implementation in smbd in Samba 3.5.x and 3.6.x before 3.6.25, 4.0.x before 4.0.25, 4.1.x before 4.1.17, and 4.2.x before 4.2.0rc5 performs a free operation on an uninitialized stack pointer, which allows remote attackers to execute arbitrary code...

10CVSS8.3AI score0.87636EPSS
Exploits7
F5 Networks
F5 Networks
•added 2023/02/21 7:0 p.m.•74 views

K28464509: PHP vulnerability CVE-2018-7584

Security Advisory Description In PHP through 5.6.33, 7.0.x before 7.0.28, 7.1.x through 7.1.14, and 7.2.x through 7.2.2, there is a stack-based buffer under-read while parsing an HTTP response in the phpstreamurlwraphttpex function in ext/standard/httpfopenwrapper.c. This subsequently results in...

9.8CVSS8AI score0.87606EPSS
Exploits3
F5 Networks
F5 Networks
•added 2023/02/21 6:53 p.m.•74 views

K18364001: Node.js vulnerability CVE-2017-15896

Security Advisory Description Node.js was affected by OpenSSL vulnerability CVE-2017-3737 in regards to the use of SSLread due to TLS handshake failure. The result was that an active network attacker could send application data to Node.js using the TLS or HTTP2 modules in a way that bypassed TLS...

9.1CVSS6.8AI score0.02385EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:53 p.m.•74 views

K55102004: BIG-IP Edge Client for Windows vulnerability CVE-2020-5855

Security Advisory Description When the Windows Logon Integration feature is configured for BIG-IP Edge Client, unauthorized users who have physical access to an authorized user's machine can get shell access under unprivileged user. CVE-2020-5855 Impact Attackers may be able to bypass...

4.6CVSS5.6AI score0.00329EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•74 views

K48355112: PHP vulnerability CVE-2018-10549

Security Advisory Description An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a fin...

8.8CVSS8.2AI score0.07159EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:45 p.m.•74 views

K00994461: GSON vulnerability CVE-2022-25647

Security Advisory Description The package com.google.code.gson:gson before 2.8.9 are vulnerable to Deserialization of Untrusted Data via the writeReplace method in internal classes, which may lead to DoS attacks. CVE-2022-25647 Impact Traffic is disrupted for new client connections. This...

7.7CVSS7.9AI score0.1158EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•74 views

K15004519: NFS vulnerability CVE-2017-7895

Security Advisory Description The NFSv2 and NFSv3 server implementations in the Linux kernel through 4.10.13 lack certain checks for the end of a buffer, which allows remote attackers to trigger pointer-arithmetic errors or possibly have unspecified other impact via crafted requests, related to...

10CVSS7.2AI score0.1081EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 6:34 p.m.•74 views

K31530542: PHP vulnerabilities CVE-2007-1777, CVE-2007-3997, CVE-2007-4657, CVE-2008-3658, and CVE-2008-3659

Security Advisory Description CVE-2007-1777 Integer overflow in the zipreadentry function in PHP 4 before 4.4.5 allows remote attackers to execute arbitrary code via a ZIP archive that contains an entry with a length value of 0xffffffff, which is incremented before use in an emalloc call,...

7.5CVSS8.2AI score0.15328EPSS
Exploits9
F5 Networks
F5 Networks
•added 2023/02/21 6:18 p.m.•74 views

K07560020: Linux kernel vulnerabilities CVE-2015-7884, CVE-2015-7885, CVE-2015-8543, CVE-2015-8569, and CVE-2015-8660

Security Advisory Description CVE-2015-7884 The vividfbioctl function in drivers/media/platform/vivid/vivid-osd.c in the Linux kernel through 4.3.3 does not initialize a certain structure member, which allows local users to obtain sensitive information from kernel memory via a crafted application...

7.2CVSS6.5AI score0.22374EPSS
Exploits12
F5 Networks
F5 Networks
•added 2023/02/21 6:6 p.m.•74 views

K30291321: The attack signature check may fail to detect and block illegal requests for a case-insensitive policy

Security Advisory Description The web application firewall attack signature check may fail to detect and block illegal requests. This issue occurs when all of the following conditions are met: You are using one of the following web application firewall products: Advanced WAF or BIG-IP ASM 11.6.0 ...

6.5AI score
Exploits0
F5 Networks
F5 Networks
•added 2022/03/17 10:4 p.m.•74 views

Intel CPU vulnerability CVE-2021-0093

Incorrect default permissions in the firmware for some IntelR Processors may allow a privileged user to potentially enable a denial of service via local access. CVE-2021-0093 Impact An attacker may be able to exploit the Intel processor firmware to gain elevated access to resources. The following...

4.4CVSS4.9AI score0.00235EPSS
Exploits0
F5 Networks
F5 Networks
•added 2016/07/18 12:0 a.m.•74 views

SOL04253390 - Apache Xerces vulnerability CVE-2016-2099

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

10CVSS2.2AI score0.06781EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2016/04/18 12:0 a.m.•74 views

SOL20145801 - Mozilla NSS vulnerability CVE-2016-1979

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

8.8CVSS2.4AI score0.02171EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2015/11/06 12:0 a.m.•74 views

SOL17551 - Linux kernel vulnerability CVE-2014-9419

Although the software of the affected F5 products contains the vulnerable code, the affected F5 products do not use the vulnerable code in a way that exposes the vulnerability in a standard configuration. An attacker must have local shell access to the affected F5 products to trigger an exploit...

2.1CVSS0.2AI score0.00436EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2015/07/07 12:0 a.m.•74 views

SOL16898 - PKCS #7 vulnerability CVE-2015-1790

The BIG-IP data plane is not vulnerable to this CVE. The control plane is only vulnerable when a locally authenticated attacker uses the OpenSSL command line tool. While BIG-IP v12.0.0 ships with an OpenSSL version prior to 1.0.1n, the libraries necessary to fix the issue were merged with the...

5CVSS1AI score0.22899EPSS
Exploits0References7
F5 Networks
F5 Networks
•added 2015/04/01 12:0 a.m.•74 views

SOL16334 - Apache Struts vulnerability CVE-2013-4316

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

10CVSS2.8AI score0.08333EPSS
Exploits1References5
F5 Networks
F5 Networks
•added 2014/10/09 12:0 a.m.•74 views

SOL15680 - Linux kernel vulnerabilities CVE-2014-3917, CVE-2014-0205 and CVE-2014-4667

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

6.9CVSS1.8AI score0.05926EPSS
Exploits1References7
F5 Networks
F5 Networks
•added 2024/02/19 3:31 a.m.•73 views

K000138651: c-ares vulnerability CVE-2022-4904

Security Advisory Description A flaw was found in the c-ares package. The aressetsortlist is missing checks about the validity of the input string, which allows a possible arbitrary length stack overflow. This issue may cause a denial of service or a limited impact on confidentiality and integrit...

8.6CVSS7.5AI score0.01232EPSS
Exploits1
F5 Networks
F5 Networks
•added 2023/02/21 8:2 p.m.•73 views

K54207009: Apache mod_remoteip vulnerability CVE-2019-10097

Security Advisory Description In Apache HTTP Server 2.4.32-2.4.39, when modremoteip was configured to use a trusted intermediary proxy server using the "PROXY" protocol, a specially crafted PROXY header could trigger a stack buffer overflow or NULL pointer deference. This vulnerability could only...

7.2CVSS6.7AI score0.52873EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 8:1 p.m.•73 views

K15311661: NodeJS vulnerability CVE-2016-2086

Security Advisory Description Node.js 0.10.x before 0.10.42, 0.12.x before 0.12.10, 4.x before 4.3.0, and 5.x before 5.6.0 allow remote attackers to conduct HTTP request smuggling attacks via a crafted Content-Length HTTP header. CVE-2016-2086 Impact An attacker may be able to perform HTTP reques...

7.5CVSS8.7AI score0.06257EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
•added 2023/02/21 8:1 p.m.•73 views

K5533: Potential protocol version rollback vulnerability in OpenSSL - CVE-2005-2969

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this Solution have not been evaluated for...

5.8AI score
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:58 p.m.•73 views

K28622040: Python vulnerability CVE-2019-9948

Security Advisory Description urllib in Python 2.x through 2.7.16 supports the localfile: scheme, which makes it easier for remote attackers to bypass protection mechanisms that blacklist file: URIs, as demonstrated by triggering a urllib.urlopen'localfile:///etc/passwd' call. CVE-2019-9948 Impac...

9.1CVSS7.7AI score0.11844EPSS
Exploits1Affected Software4
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•73 views

K51440224: PCRE vulnerability CVE-2016-3191

Security Advisory Description The compilebranch function in pcrecompile.c in PCRE 8.x before 8.39 and pcre2compile.c in PCRE2 before 10.22 mishandles patterns containing an ACCEPT substring in conjunction with nested parentheses, which allows remote attackers to execute arbitrary code or cause a...

9.8CVSS8.9AI score0.0843EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•73 views

K51512510: tcpdump vulnerability CVE-2018-14879

Security Advisory Description The command-line argument parser in tcpdump before 4.9.3 has a buffer overflow in tcpdump.c:getnextfile. CVE-2018-14879 Impact A local attacker may be able to corrupt data, run arbitrary code, or cause the program to terminate. Security Advisory Status F5 Product...

7CVSS6.3AI score0.04667EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 7:37 p.m.•73 views

K16881: OZWPAN driver vulnerabilities CVE-2015-4001, CVE-2015-4002, CVE-2015-4003, CVE-2015-4004

Security Advisory Description Description CVE-2015-4001 Integer signedness error in the ozhcdgetdesccnf function in drivers/staging/ozwpan/ozhcd.c in the OZWPAN driver in the Linux kernel through 4.0.5 allows remote attackers to cause a denial of service system crash or possibly execute arbitrary...

9CVSS7.5AI score0.08339EPSS
Exploits1
F5 Networks
F5 Networks
•added 2023/02/21 7:6 p.m.•73 views

K80996302: Multiple NTP vulnerabilities

Security Advisory Description CVE-2016-7427 The broadcast mode replay prevention functionality in ntpd in NTP before 4.2.8p9 allows remote attackers to cause a denial of service reject broadcast mode packets via a crafted broadcast mode packet. CVE-2016-7428 ntpd in NTP before 4.2.8p9 allows remo...

7.5CVSS6.4AI score0.31942EPSS
Exploits3
F5 Networks
F5 Networks
•added 2023/02/21 6:54 p.m.•73 views

K18015201: Linux kernel vulnerability CVE-2017-2636

Security Advisory Description Race condition in drivers/tty/nhdlc.c in the Linux kernel through 4.10.1 allows local users to gain privileges or cause a denial of service double free by setting the HDLC line discipline. CVE-2017-2636 Impact This vulnerability may allow locally authenticated users ...

7CVSS6.6AI score0.01021EPSS
Exploits2Affected Software19
F5 Networks
F5 Networks
•added 2023/02/21 6:53 p.m.•73 views

K69309752: Apache HTTPD vulnerability CVE-2022-30556

Security Advisory Description Apache HTTP Server 2.4.53 and earlier may return lengths to applications calling r:wsread that point past the end of the storage allocated for the buffer. CVE-2022-30556 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory...

7.5CVSS8AI score0.04687EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:49 p.m.•73 views

K22148713: BIND vulnerability CVE-1999-0184

Security Advisory Description When compiled with the -DALLOWUPDATES option, bind allows dynamic updates to the DNS server, allowing for malicious modification of DNS records. CVE-1999-0184 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5...

6.4CVSS6.7AI score0.01909EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:48 p.m.•73 views

K17313: PHP vulnerability CVE-2014-4721

Security Advisory Description The phpinfo implementation in ext/standard/info.c in PHP before 5.4.30 and 5.5.x before 5.5.14 does not ensure use of the string data type for the PHPAUTHPW, PHPAUTHTYPE, PHPAUTHUSER, and PHPSELF variables, which might allow context-dependent attackers to obtain...

2.6CVSS8.8AI score0.05868EPSS
Exploits1Affected Software12
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•73 views

K32512431: Linux kernel vulnerabilities CVE-2020-8694 and CVE-2020-8695

Security Advisory Description CVE-2020-8694 Insufficient access control in the Linux kernel driver for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2020-8695 Observable discrepancy in the RAPL interface for some IntelR...

5.5CVSS5.4AI score0.00446EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•73 views

K13540723: NTP vulnerability CVE-2018-7184

Security Advisory Description ntpd in ntp 4.2.8p4 before 4.2.8p11 drops bad packets before updating the "received" timestamp, which allows remote attackers to cause a denial of service disruption by sending a packet with a zero-origin timestamp causing the association to reset and setting the...

7.5CVSS6.7AI score0.08687EPSS
Exploits0Affected Software5
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•73 views

K04734219: Red Hat JBoss vulnerability CVE-2015-7501

Security Advisory Description Red Hat JBoss A-MQ 6.x; BPM Suite BPMS 6.x; BRMS 6.x and 5.x; Data Grid JDG 6.x; Data Virtualization JDV 6.x and 5.x; Enterprise Application Platform 6.x, 5.x, and 4.3.x; Fuse 6.x; Fuse Service Works FSW 6.x; Operations Network JBoss ON 3.x; Portal 6.x; SOA Platform...

10CVSS7.8AI score0.83274EPSS
Exploits8
F5 Networks
F5 Networks
•added 2023/02/21 6:46 p.m.•73 views

K75521602: MySQL vulnerability CVE-2022-21444

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: DDL. Supported versions that are affected are 5.7.37 and prior and 8.0.28 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple...

4.4CVSS4.9AI score0.01266EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•73 views

K14760551: Multiple libwebp vulnerabilities

Security Advisory Description CVE-2018-25009 A flaw was found in libwebp in versions before 1.0.1. An out-of-bounds read was found in function WebPMuxCreateInternal. The highest threat from this vulnerability is to data confidentiality and to the service availability. CVE-2018-25010 A flaw was...

9.1CVSS7.5AI score0.02302EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•73 views

K10269585: Linux kernel vulnerability CVE-2018-20976

Security Advisory Description An issue was discovered in fs/xfs/xfssuper.c in the Linux kernel before 4.18. A use after free exists, related to xfsfsfillsuper failure. CVE-2018-20976 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product...

7.8CVSS6AI score0.00607EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•73 views

K73648110: Apache Tomcat vulnerability CVE-2021-25329

Security Advisory Description The fix for CVE-2020-9484 was incomplete. When using Apache Tomcat 10.0.0-M1 to 10.0.0, 9.0.0.M1 to 9.0.41, 8.5.0 to 8.5.61 or 7.0.0. to 7.0.107 with a configuration edge case that was highly unlikely to be used, the Tomcat instance was still vulnerable to...

7CVSS7.7AI score0.56636EPSS
Exploits15
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•73 views

K52379673: Linux kernel vulnerability for CVE-2021-4083

Security Advisory Description A read-after-free memory flaw was found in the Linux kernel's garbage collection for Unix domain socket file handlers in the way users call close and fget simultaneously and can potentially trigger a race condition. This flaw allows a local user to crash the system o...

7CVSS6.4AI score0.0031EPSS
Exploits0Affected Software16
F5 Networks
F5 Networks
•added 2023/02/21 6:34 p.m.•73 views

K81158013: Linux kernel vulnerability CVE-2017-16939

Security Advisory Description The XFRM dump policy implementation in net/xfrm/xfrmuser.c in the Linux kernel before 4.13.11 allows local users to gain privileges or cause a denial of service use-after-free via a crafted SORCVBUF setsockopt system call in conjunction with XFRMMSGGETPOLICY Netlink...

7.8CVSS6AI score0.0215EPSS
Exploits3
Total number of security vulnerabilities5000