Lucene search
K

6413 matches found

F5 Networks
F5 Networks
added 2015/01/12 12:0 a.m.44 views

SOL15983 - Linux kernel vulnerability CVE-2013-7263

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

4.9CVSS0.6AI score0.0048EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2015/01/07 12:0 a.m.44 views

SOL15956 - Linux kernel vulnerability CVE-2014-2568

Recommended action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

2.9CVSS0.8AI score0.01015EPSS
Exploits2References4
F5 Networks
F5 Networks
added 2014/12/18 12:0 a.m.44 views

SOL15920 - Apache vulnerability CVE-2011-0419

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. BIG-IP and...

4.3CVSS2.3AI score0.30406EPSS
Exploits5References9
F5 Networks
F5 Networks
added 2014/08/13 12:0 a.m.44 views

SOL15461 - OpenSSL vulnerability CVE-2011-4619

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. Note: SGC...

5CVSS1.3AI score0.16645EPSS
Exploits0References8
F5 Networks
F5 Networks
added 2014/07/17 12:0 a.m.44 views

SOL15426 - Apache Tomcat vulnerability CVE-2014-0075

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

5CVSS0.8AI score0.2006EPSS
Exploits1References4
F5 Networks
F5 Networks
added 2014/06/19 12:0 a.m.44 views

SOL15349 - OpenSSL 0.9.8t Denial of Service via S/MIME msg vulnerability CVE-2006-7250

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

5CVSS3.7AI score0.06989EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2014/05/08 12:0 a.m.44 views

SOL15250 - BIND vulnerability CVE-2014-3214

The prefetch implementation in named in ISC BIND 9.10.0, when a recursive nameserver is enabled, allows remote attackers to cause a denial of service REQUIRE assertion failure and daemon exit via a DNS query that triggers a response with unspecified attributes. CVE-2014-3214...

5CVSS8.5AI score0.17259EPSS
Exploits0References5
F5 Networks
F5 Networks
added 2012/01/13 12:0 a.m.44 views

SOL13279 - PHP vulnerability CVE-2009-4017

Recommended Action None Supplemental Information Note: This link will take you to a resource outside of AskF5, and it is possible that the document may be removed without our knowledge. SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view n...

5CVSS9.2AI score0.12041EPSS
Exploits0
F5 Networks
F5 Networks
added 2011/12/15 12:0 a.m.44 views

SOL13275 - PHP vulnerability CVE-2009-3293

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy...

7.5CVSS3.7AI score0.0269EPSS
Exploits1
F5 Networks
F5 Networks
added 2011/07/27 12:0 a.m.44 views

SOL12986 - BIND vulnerability CVE-2011-2464

Unspecified vulnerability in ISC BIND 9 9.6.x before 9.6-ESV-R4-P3, 9.7.x before 9.7.3-P3, and 9.8.x before 9.8.0-P4 allows remote attackers to cause a Denial of Service DoS named daemon crash by way of a crafted UPDATE request. Information about this advisory is available at the following...

5CVSS7.1AI score0.19265EPSS
Exploits1
F5 Networks
F5 Networks
added 2008/07/15 12:0 a.m.44 views

SOL8939 - SNMPv3 HMAC verification vulnerability CVE-2008-0960 - VU#878044

Information about this advisory is available at the following locations: F5 Product Development tracked this issue as CR99838 for BIG-IP LTM, GTM, ASM, PSM, Link Controller, and WebAccelerator and it was fixed in BIG-IP 9.4.6 and 10.0.0. For information about upgrading, refer to the BIG-IP LTM,...

10CVSS6.4AI score0.6879EPSS
Exploits7
F5 Networks
F5 Networks
added 2008/01/28 12:0 a.m.44 views

SOL8331 - OpenSSL FIPS Object Module 1.1 vulnerability - CVE-2007-5502

The PRNG implementation for the OpenSSL FIPS Object Module 1.1.1 does not perform auto-seeding during the FIPS self-test, which generates random data that is more predictable than expected and makes it easier for attackers to bypass protection mechanisms that rely on the randomness. Information...

6.4CVSS6.3AI score0.02312EPSS
Exploits0
F5 Networks
F5 Networks
added 2007/05/16 12:0 a.m.44 views

SOL2355 - Timing attacks on RSA private keys - CAN-2003-0147

Information about this advisory can be found at the following location: Note: This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge...

5CVSS2.8AI score0.06393EPSS
Exploits0
F5 Networks
F5 Networks
added 2006/09/11 12:0 a.m.44 views

SOL6612 - BIND 9: Multiple DoS vulnerabilities VU#697164 and VU#915404

This security advisory describes multiple BIND 9 denial of service vulnerabilities. For information about this advisory, refer to the Internet Systems Consortium website at the following location: F5 Networks Product Development is tracking this issue as ID 314714 formerly CR68956 and ID 264730...

0.9AI score
Exploits0Affected Software6
F5 Networks
F5 Networks
added 2025/04/04 7:59 a.m.43 views

K000150719: Multiple PHP vulnerabilities

Security Advisory Description CVE-2024-11235 In PHP versions 8.3. before 8.3.19 and 8.4. before 8.4.5, a code sequence involving set handler or ??= operator and exceptions can lead to a use-after-free vulnerability. If the third party can control the memory layout leading to this, for example by...

9.8CVSS6.2AI score0.01357EPSS
Exploits3
F5 Networks
F5 Networks
added 2025/03/25 6:29 p.m.43 views

K000150538: Kubernetes ingress-nginx vulnerabilities CVE-2025-1097, CVE-2025-1098, CVE-2025-1974, and CVE-2025-24514

Security Advisory Description CVE-2025-1097 also known as IngressNightmare A security issue was discovered in ingress-nginx https : //github . com/kubernetes/ingress-nginx where the auth-tls-match-cn Ingress annotation can be used to inject configuration into nginx. This can lead to arbitrary cod...

9.8CVSS6.8AI score0.99098EPSS
Exploits21
F5 Networks
F5 Networks
added 2025/02/05 2:41 p.m.43 views

K000149540: Quarterly Security Notification (February 2025)

Security Advisory Description On February 5, 2025, F5 announced the following security issues. This document is intended to serve as an overview of these vulnerabilities to help determine the impact to your F5 devices. You can find the details of each issue in the associated articles. You can wat...

8.9CVSS6.6AI score0.0707EPSS
Exploits2
F5 Networks
F5 Networks
added 2024/11/26 10:7 p.m.43 views

K000148690: Qt vulnerability CVE-2023-32573

Security Advisory Description In Qt before 5.15.14, 6.0.x through 6.2.x before 6.2.9, and 6.3.x through 6.5.x before 6.5.1, QtSvg QSvgFont munitsPerEm initialization is mishandled. CVE-2023-32573 Impact A remote attacker may be able to cause a denial-of-service DoS on the system. Security Advisor...

6.5CVSS7.2AI score0.00877EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2024/09/12 4:29 p.m.43 views

K000141062: libcurl vulnerability CVE-2024-7264

Security Advisory Description libcurl's ASN1 parser code has the GTime2str function, used for parsing an ASN.1 Generalized Time field. If given an syntactically incorrect field, the parser might end up using -1 for the length of the time fraction, leading to a strlen getting performed on a pointe...

6.5CVSS7.2AI score0.17301EPSS
Exploits1
F5 Networks
F5 Networks
added 2024/09/06 8:51 p.m.43 views

K000140987: Linux kernel vulnerability CVE-2024-36971

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: net: fix dstnegativeadvice race dstnegativeadvice does not enforce proper RCU rules when sk-dstcache must be cleared, leading to possible UAF. RCU rules are that we must first clear sk-skdstcache, th...

7.8CVSS6.3AI score0.02701EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
added 2024/08/05 8:45 a.m.43 views

K000140579: Apache vulnerability CVE-2024-39884

Security Advisory Description A regression in the core of Apache HTTP Server 2.4.60 ignores some use of the legacy content-type based configuration of handlers. "AddType" and similar configuration, under some circumstances where files are requested indirectly, result in source code disclosure of...

6.2CVSS6.4AI score0.00889EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/06/04 7:16 p.m.43 views

K000139897: Linux kernel vulnerability CVE-2023-42753

Security Advisory Description An array indexing vulnerability was found in the netfilter subsystem of the Linux kernel. A missing macro could lead to a miscalculation of the h-nets array offset, providing attackers with the primitive to arbitrarily increment/decrement a memory buffer out-of-bound...

7.8CVSS6.8AI score0.00514EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
added 2024/05/29 1:33 p.m.43 views

K000139612: NGINX HTTP/3 QUIC vulnerability CVE-2024-35200

Security Advisory Description When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed HTTP/3 requests can cause NGINX worker processes to terminate. CVE-2024-35200 Note : This issue affects NGINX systems compiled with the ngxhttpv3module module, where the...

5.3CVSS6.8AI score0.00917EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2024/05/13 3:24 p.m.43 views

K000139590: MySQL Server vulnerabilities CVE-2024-20994, CVE-2024-21015, CVE-2024-21050, and CVE-2024-21057

Security Advisory Description CVE-2024-20994 Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Information Schema. Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Difficult to exploit vulnerability allows low privileged attacker with netwo...

5.5CVSS4.7AI score0.00986EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/05/10 9:12 a.m.43 views

K000139573: node.js vulnerability CVE-2024-22017

Security Advisory Description setuid does not affect libuv's internal iouring operations if initialized before the call to setuid. This allows the process to perform privileged operations despite presumably having dropped such privileges through a call to setuid. This vulnerability affects all...

7.3CVSS6.9AI score0.00893EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/05/08 1:0 p.m.43 views

K000138520: BIG-IP Configuration utility vulnerability CVE-2024-27202

Security Advisory Description A DOM-based cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. CVE-2024-27202 Impact An attacker may exploit this...

4.7CVSS5.6AI score0.00272EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2024/03/22 4:1 p.m.43 views

K000138989: BIND vulnerability CVE-2023-5517

Security Advisory Description A flaw in query-handling code can cause named to exit prematurely with an assertion failure when: - nxdomain-redirect ; is configured, and - the resolver receives a PTR query for an RFC 1918 address that would normally result in an authoritative NXDOMAIN response. Th...

7.5CVSS7.6AI score0.01231EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/02/14 1:58 p.m.43 views

K000137521: BIG-IP AFM vulnerability CVE-2024-21763

Security Advisory Description When BIG-IP AFM Device DoS or DoS profile is configured with NXDOMAIN attack vector and bad actor detection, undisclosed queries can cause the Traffic Management Microkernel TMM to terminate. CVE-2024-21763 Impact Traffic is disrupted while the TMM process restarts...

7.5CVSS7.7AI score0.00515EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2024/02/14 1:55 p.m.43 views

K000137334: F5 Application Visibility and Reporting module and BIG-IP Advanced WAF/ASM vulnerability CVE-2024-23805

Security Advisory Description Undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. For the Application Visibility and Reporting module, this may occur when the HTTP Analytics profile with URLs enabled under Collected Entities is configured on a virtual server and th...

7.5CVSS7.6AI score0.00515EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2024/02/12 9:44 a.m.43 views

K000138576: Python-asyncssh vulnerability CVE-2023-46445

Security Advisory Description An issue in AsyncSSH before 2.14.1 allows attackers to control the extension info message RFC 8308 via a man-in-the-middle attack, aka a "Rogue Extension Negotiation." CVE-2023-46445 Impact There is no impact; F5 products are not affected by this vulnerability...

5.9CVSS7.2AI score0.00586EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/02/02 8:18 a.m.43 views

K000138462: Oracle Java vulnerabilities CVE-2024-20922, CVE-2024-20923

Security Advisory Description CVE-2024-20922 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JavaFX. Supported versions that are affected are Oracle Java SE: 8u391; Oracle GraalVM Enterprise Edition: 20.3.12 and 21.3.8. Difficult to...

3.1CVSS4.4AI score0.00601EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/01/16 8:8 p.m.43 views

K000138255: Go OpenTelemetry Contrib vulnerability CVE-2023-47108

Security Advisory Description OpenTelemetry-Go Contrib is a collection of third-party packages for OpenTelemetry-Go. Prior to version 0.46.0, the grpc Unary Server Interceptor out of the box adds labels net.peer.sock.addr and net.peer.sock.port that have unbound cardinality. It leads to the...

7.5CVSS6.3AI score0.01592EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/12/19 5:50 p.m.43 views

K000137969: OpenSSL vulnerability CVE-2023-3817

Security Advisory Description Issue summary: Checking excessively long DH keys or parameters may be very slow. Impact summary: Applications that use the functions DHcheck, DHcheckex or EVPPKEYparamcheck to check a DH key or DH parameters may experience long delays. Where the key or parameters tha...

5.3CVSS6.6AI score0.02577EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/12/15 6:8 p.m.43 views

K000137931: Apache Struts vulnerability CVE-2023-50164

Security Advisory Description An attacker can manipulate file upload params to enable paths traversal and under some circumstances this can lead to uploading a malicious file which can be used to perform Remote Code Execution. Users are recommended to upgrade to versions Struts 2.5.33 or Struts...

9.8CVSS9.4AI score0.80819EPSS
Exploits15
F5 Networks
F5 Networks
added 2023/09/06 4:33 p.m.43 views

K000136109: PHP SQLite vulnerability CVE-2022-31631

Security Advisory Description In PHP versions 8.0. before 8.0.27, 8.1. before 8.1.15, 8.2. before 8.2.2 when using PDO::quote function to quote user-supplied data for SQLite, supplying an overly long string may cause the driver to incorrectly quote the data, which may further lead to SQL injectio...

9.1CVSS8.3AI score0.02134EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/08/28 8:7 p.m.43 views

K000135997: Multiple Node.js vulnerabilities

Security Advisory Description CVE-2023-32002 The use of Module.load can bypass the policy mechanism and require modules outside of the policy.json definition for a given module. This vulnerability affects all users using the experimental policy mechanism in all active release lines: 16.x, 18.x an...

9.8CVSS7.2AI score0.01817EPSS
Exploits3
F5 Networks
F5 Networks
added 2023/08/21 10:17 p.m.43 views

K000135921: Python urllib.parse vulnerability CVE-2023-24329

Security Advisory Description An issue in the urllib.parse component of Python before 3.11.4 allows attackers to bypass blocklisting methods by supplying a URL that starts with blank characters. CVE-2023-24329 Impact F5 products do not ship with Python scripts that utilize the affected Python...

7.5CVSS7.5AI score0.20459EPSS
Exploits3Affected Software17
F5 Networks
F5 Networks
added 2023/08/02 1:26 p.m.43 views

K000135479: Overview of F5 vulnerabilities (August 2023)

Security Advisory Description On August 2, 2023, F5 announced the following security issues. This document is intended to serve as an overview of these vulnerabilities to help determine the impact to your F5 devices. You can find the details of each issue in the associated articles. Important :...

7.8CVSS5.8AI score0.00453EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/04/27 12:54 a.m.43 views

K000133668: Python urllib3 vulnerability CVE-2018-20060

Security Advisory Description urllib3 before version 1.23 does not remove the Authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the Authorization header to be exposed to unintended hosts or...

9.8CVSS7.8AI score0.04488EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/04/11 4:29 p.m.43 views

K000133447: Linux kernel vulnerability CVE-2022-32250

Security Advisory Description net/netfilter/nftablesapi.c in the Linux kernel through 5.18.1 allows a local user able to create user/net namespaces to escalate privileges to root because an incorrect NFTSTATEFULEXPR check leads to a use-after-free. CVE-2022-32250 Impact For products with None in...

7.8CVSS6.9AI score0.02881EPSS
Exploits6
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.43 views

K91245485: RSA-CRT key leak vulnerability CVE-2015-5738

Security Advisory Description The RSA-CRT implementation in the Cavium Software Development Kit SDK 2.x, when used on OCTEON II CN6xxx Hardware on Linux to support TLS with Perfect Forward Secrecy PFS, makes it easier for remote attackers to obtain private RSA keys by conducting a Lenstra...

7.5CVSS4.6AI score0.02425EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.43 views

K2319: Insufficient MAC computation in OpenSSH - CAN-2003-0078

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

5CVSS9.3AI score0.13718EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:1 p.m.43 views

K20219314: OpenSSL vulnerability CVE-2015-1794

Security Advisory Description The ssl3getkeyexchange function in ssl/s3clnt.c in OpenSSL 1.0.2 before 1.0.2e allows remote servers to cause a denial of service segmentation fault via a zero p value in an anonymous Diffie-Hellman DH ServerKeyExchange message. CVE-2015-1794 Impact There is no impac...

5CVSS7.5AI score0.0498EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.43 views

K20001553: Libgcrypt vulnerability CVE-2018-0495

Security Advisory Description Libgcrypt before 1.7.10 and 1.8.x before 1.8.3 allows a memory-cache side-channel attack on ECDSA signatures that can be mitigated through the use of blinding during the signing process in the gcryeccecdsasign function in cipher/ecc-ecdsa.c, aka the Return Of the...

4.7CVSS5.6AI score0.00887EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.43 views

K40427215: BIND vulnerability CVE-2022-2881

Security Advisory Description The underlying bug might cause read past end of the buffer and either read memory it should not read, or crash the process. CVE-2022-2881 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development ha...

8.2CVSS6.8AI score0.01073EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:59 p.m.43 views

K03073656: X.Org X server vulnerability CVE-2018-14665

Security Advisory Description A flaw was found in xorg-x11-server before 1.20.3. An incorrect permission check for -modulepath and -logfile options when starting Xorg. X server allows unprivileged users with the ability to log in to the system via physical console to escalate their privileges and...

7.2CVSS7.2AI score0.2704EPSS
Exploits39
F5 Networks
F5 Networks
added 2023/02/21 7:59 p.m.43 views

K99123750: BIG-IP Stream profile vulnerability CVE-2022-28701

Security Advisory Description When the stream profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.CVE-2022-28701 Impact System performance can degrade until the Traffic Management Microkernel TMM process is either forced to restart ...

7.5CVSS7.3AI score0.00868EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.43 views

K16729408: D-Bus vulnerability CVE-2020-12049

Security Advisory Description An issue was discovered in dbus = 1.3.0 before 1.12.18. The DBusServer in libdbus, as used in dbus-daemon, leaks file descriptors when a message exceeds the per-message file descriptor limit. A local attacker with access to the D-Bus system bus or another system...

5.5CVSS6.7AI score0.00569EPSS
Exploits1Affected Software12
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.43 views

K35104614: Java SE vulnerability CVE-2017-10116

Security Advisory Description Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Security. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit vulnerability allows...

8.3CVSS8.3AI score0.03524EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.43 views

K47227224: Linux kernel vulnerability CVE-2019-17133

Security Advisory Description In the Linux kernel through 5.3.2, cfg80211mgdwextgiwessid in net/wireless/wext-sme.c does not reject a long SSID IE, leading to a Buffer Overflow. CVE-2019-17133 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status ...

9.8CVSS6.9AI score0.06652EPSS
Exploits0
Total number of security vulnerabilities5000