Lucene search
K

6396 matches found

F5 Networks
F5 Networks
added 2024/02/23 7:29 p.m.35 views

K000138704: Multiple MySQL vulnerabilities

Security Advisory Description CVE-2024-20964 Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Privileges. Supported versions that are affected are 8.0.35 and prior and 8.2.0 and prior. Difficult to exploit vulnerability allows low privileged attacker with...

5.3CVSS4.2AI score0.01096EPSS
Exploits0
F5 Networks
F5 Networks
added 2024/02/14 1:42 p.m.35 views

K98606833: BIG-IP and BIG-IQ scp vulnerability CVE-2024-21782

Security Advisory Description BIG-IP or BIG-IQ Resource Administrators and Certificate Managers who have access to the secure copy scp utility but do not have access to Advanced Shell bash can execute arbitrary commands with a specially crafted command string. This vulnerability is due to an...

6.7CVSS7.3AI score0.00178EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2024/02/14 1:33 p.m.35 views

K000137522: BIG-IP iControl REST vulnerability CVE-2024-22093

Security Advisory Description When running in Appliance mode, an authenticated remote command injection vulnerability exists in an undisclosed iControl REST endpoint on multi-bladed systems. A successful exploit can allow the attacker to cross a security boundary. CVE-2024-22093 Impact This...

8.7CVSS8.8AI score0.00835EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2024/02/14 1:29 p.m.35 views

K000134516: BIG-IP SSL Client Certificate LDAP and CRLDP Authentication profiles vulnerability CVE-2024-23979

Security Advisory Description When an SSL Client Certificate LDAP or Certificate Revocation List Distribution Point CRLDP authentication profile is configured on a virtual server, undisclosed requests can cause an increase in CPU resource utilization. CVE-2024-23979 Impact System performance can...

7.5CVSS7.6AI score0.00342EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2024/02/14 1:26 p.m.35 views

K000135873: BIG-IP Websockets vulnerability CVE-2024-21849

Security Advisory Description When an Advanced WAF/ASM security policy and a Websockets profile are configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM process to terminate. CVE-2024-21849 Impact Traffic is disrupted while the TMM process restarts...

7.5CVSS7.6AI score0.00515EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2024/01/31 5:27 p.m.35 views

K000138425: SQLite vulnerability CVE-2023-7104

Security Advisory Description A vulnerability was found in SQLite SQLite3 up to 3.43.0 and classified as critical. This issue affects the function sessionReadRecord of the file ext/session/sqlite3session.c of the component make alltest Handler. The manipulation leads to heap-based buffer overflow...

7.3CVSS5.7AI score0.01249EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/12/18 5:5 a.m.35 views

K000137940: Multiple Oracle MySQL vulnerabilities

Security Advisory Description CVE-2023-22015 Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Optimizer. Supported versions that are affected are 5.7.42 and prior and 8.0.31 and prior. Easily exploitable vulnerability allows high privileged attacker with network access...

4.9CVSS5AI score0.00891EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/12/05 6:42 a.m.35 views

K000137790: Linux kernel vulnerability CVE-2023-3609

Security Advisory Description A use-after-free vulnerability in the Linux kernel's net/sched: clsu32 component can be exploited to achieve local privilege escalation. If tcfchangeindev fails, u32setparms will immediately return an error after incrementing or decrementing the reference counter in...

7.8CVSS6.7AI score0.00458EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/10/09 5:26 p.m.35 views

K000137187: GlibC vulnerability CVE-2023-4911

Security Advisory Description A buffer overflow was discovered in the GNU C Library's dynamic loader ld.so while processing the GLIBCTUNABLES environment variable. This issue could allow a local attacker to use maliciously crafted GLIBCTUNABLES environment variables when launching binaries with...

7.8CVSS7.2AI score0.81422EPSS
Exploits28
F5 Networks
F5 Networks
added 2023/08/29 11:42 a.m.35 views

K000136011: Apache Tomcat Open Redirect vulnerability CVE-2023-41080

Security Advisory Description URL Redirection to Untrusted Site 'Open Redirect' vulnerability in FORM authentication feature Apache Tomcat.This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.0-M10, from 10.1.0-M1 through 10.0.12, from 9.0.0-M1 through 9.0.79 and from 8.5.0 through 8.5.9...

6.1CVSS7.5AI score0.05972EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/08/02 10:33 p.m.35 views

K000135718: OpenJDK vulnerabilities CVE-2023-22006, CVE-2023-22043, and CVE-2023-22045

Security Advisory Description CVE-2023-22006 Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterprise...

5.9CVSS4.5AI score0.01164EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/07/17 7:56 a.m.35 views

K000135507: Java vulnerabilities CVE-2020-14781

Security Advisory Description ​​​​​​Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: JNDI. Supported versions that are affected are Java SE: 7u271, 8u261, 11.0.8 and 15; Java SE Embedded: 8u261. Difficult to exploit vulnerability allows unauthenticated attacker...

4.3CVSS5.5AI score0.02296EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2023/07/11 4:25 p.m.35 views

K000135446: Linux kernel vulnerability CVE-2023-3269

Security Advisory Description A vulnerability exists in the memory management subsystem of the Linux kernel. The lock handling for accessing and updating virtual memory areas VMAs is incorrect, leading to use-after-free problems. This issue can be successfully exploited to execute arbitrary kerne...

7.8CVSS7.6AI score0.01484EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/06/29 9:38 p.m.35 views

K000135312: BIND vulnerability CVE-2023-2828

Security Advisory Description Every named instance configured to run as a recursive resolver maintains a cache database holding the responses to the queries it has recently sent to authoritative servers. The size limit for that cache database can be configured using the max-cache-size statement i...

7.5CVSS7.2AI score0.03776EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/05/03 12:6 p.m.35 views

K000132726: BIG-IP Configuration utility XSS vulnerability CVE-2023-27378

Security Advisory Description Multiple reflected cross-site scripting XSS vulnerabilities exist in undisclosed pages of the BIG-IP Configuration utility that allow an attacker to run JavaScript in the context of the currently logged-in user. CVE-2023-27378 Impact An attacker may exploit this...

7.5CVSS6AI score0.00387EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/04/27 9:50 p.m.35 views

K000133692: OpenSLP vulnerability CVE-2023-29552

Security Advisory Description The Service Location Protocol SLP, RFC 2608 allows an unauthenticated, remote attacker to register arbitrary services. This could allow the attacker to use spoofed UDP traffic to conduct a denial-of-service attack with a significant amplification factor. CVE-2023-295...

7.5CVSS8AI score0.65873EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/04/21 11:13 p.m.35 views

K000133616: Node.js vulnerability CVE-2023-23919

Security Advisory Description A cryptographic vulnerability exists in Node.js 19.2.0, 18.14.1, 16.19.1, 14.21.3 that in some cases did does not clear the OpenSSL error stack after operations that may set it. This may lead to false positive errors during subsequent cryptographic operations that...

7.5CVSS6.6AI score0.02209EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/04/12 7:47 p.m.35 views

K000133494: Node.js vulnerability CVE-2022-43548

Security Advisory Description A OS Command Injection vulnerability exists in Node.js versions 14.21.1, 16.18.1, 18.12.1, 19.0.1 due to an insufficient IsAllowedHost check that can easily be bypassed because IsIPAddress does not properly check if an IP address is invalid before making DBS requests...

8.1CVSS7.1AI score0.14024EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/03/20 5:23 p.m.35 views

K000133077: Java SE vulnerability CVE-2019-2697

Security Advisory Description Vulnerability in the Java SE component of Oracle Java SE subcomponent: 2D. Supported versions that are affected are Java SE: 7u211 and 8u202. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromise...

8.1CVSS7.1AI score0.11466EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.35 views

K98394530: Intel CPU vulnerability CVE-2019-14598

Security Advisory Description Improper Authentication in subsystem in IntelR CSME versions 12.0 through 12.0.48 IOT only: 12.0.56, versions 13.0 through 13.0.20, versions 14.0 through 14.0.10 may allow a privileged user to potentially enable escalation of privilege, denial of service or informati...

6.7CVSS6.2AI score0.00453EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.35 views

K22113131: BIG-IP TMM Ram Cache vulnerability CVE-2020-5861

Security Advisory Description The TMM process may produce a core file in some cases when Ram Cache incorrectly optimizes stored data resulting in memory errors. RAM Cache is a BIG-IP feature used to accelerate HTTP traffic and can be enabled in a Web Acceleration profile. CVE-2020-5861 Impact The...

7.5CVSS7.3AI score0.01044EPSS
Exploits0Affected Software11
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.35 views

K98528405: BIG-IP BIND vulnerability CVE-2018-5740

Security Advisory Description A flaw in the "deny-answer-aliases" feature can cause an INSIST assertion failure in named. CVE-2018-5740 Impact A flaw in a rarely used BIND feature can cause an assertion failure in named. As a result, the bind process restarts. Security Advisory Status F5 Product...

7.5CVSS7.7AI score0.59353EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.35 views

K54200228: BIG-IP iRules vulnerability CVE-2020-5877

Security Advisory Description Malformed input to the DATAGRAM::tcp iRules command within a FLOWINIT event may lead to a denial of service. CVE-2020-5877 Impact Remote attackers may be able to perform a denial-of-service DoS attack on the BIG-IP system. Security Advisory Status F5 Product...

7.5CVSS7.5AI score0.01276EPSS
Exploits0Affected Software11
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.36 views

K15155: OpenSSH vulnerability CVE-2007-3102

Security Advisory Description Unspecified vulnerability in the linuxauditrecordevent function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an audit log via a crafted username. CVE-2007-3102 Impact None. F5 products...

4.3CVSS6.6AI score0.02342EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.35 views

K35815741: Intel CSME and TXE vulnerability CVE-2019-0086

Security Advisory Description Insufficient access control vulnerability in Dynamic Application Loader software for IntelR CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and IntelR TXE 3.1.65, 4.0.15 may allow an unprivileged user to potentially enable escalation of privilege via local...

7.8CVSS8AI score0.00358EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.35 views

K06024431: BIG-IQ vulnerability CVE-2021-23024

Security Advisory Description The BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. CVE-2021-23024 Impact This vulnerability allows an authenticated admin user or a user account assigned with an administrator role and no shell access to...

9CVSS7.5AI score0.05346EPSS
Exploits3Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.35 views

K23489380: Java vulnerability CVE-2017-10135

Security Advisory Description Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JCE. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit vulnerability allows...

5.9CVSS6.8AI score0.02598EPSS
Exploits0Affected Software9
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.35 views

K61918302: ceph-isci-cli vulnerability CVE-2018-14649

Security Advisory Description It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is done by setting debug=True in file /usr/bin/rbd-target-api provided by ceph-isci-cli package. This allows unauthenticated attacker...

10CVSS9.9AI score0.11741EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.35 views

K22251611: Attack signature check security exposure

Security Advisory Description BIG-IP Advanced WAF and BIG-IP ASM systems incorrectly handle certain requests. This issue occurs when the following condition is met: BIG-IP Advanced WAF and BIG-IP ASM handle a malicious request when a parameter with Base64 decoding is enabled. Impact The attack...

6.6AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.35 views

K31925518: BIG-IP APM access logs vulnerability CVE-2016-1497

Security Advisory Description A vulnerability in the BIG-IP Configuration utility can be used by an unauthorized BIG-IP administrative user to gain unauthorized access to the Access Policy Manager APM access logs. This vulnerability requires valid user account credentials and access to the...

4.9CVSS5AI score0.01529EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.35 views

K14693346: TMM vulnerability CVE-2021-22977

Security Advisory Description Cooperation between malicious HTTP client code and a malicious server may cause TMM to restart and generate a core file. CVE-2021-22977 Impact When attackers exploit this vulnerability, the Traffic Management Microkernel TMM restarts, and then the BIG-IP system...

7.5CVSS6.5AI score0.0102EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.35 views

K45444778: Intel SSD vulnerabilities CVE-2018-12166 and CVE-2018-12167

Security Advisory Description CVE-2018-12166 Insufficient write protection in firmware for IntelR OptaneTM SSD DC P4800X before version E2010435 may allow a privileged user to potentially enable a denial of service via local access. CVE-2018-12167 Firmware update routine in bootloader for IntelR...

4.4CVSS4.4AI score0.00288EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.35 views

K48209417: PostgreSQL vulnerabilities CVE-2018-10915 and CVE-2018-10925

Security Advisory Description CVE-2018-10915 A vulnerability was found in libpq, the default PostgreSQL client library where libpq failed to properly reset its internal state between connections. If an affected version of libpq was used with "host" or "hostaddr" connection parameters from untrust...

8.5CVSS8.1AI score0.05154EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:54 p.m.35 views

K25061316: BIND vulnerability CVE-2016-9778

Security Advisory Description An error in handling certain queries can cause an assertion failure when a server is using the nxdomain-redirect feature to cover a zone for which it is also providing authoritative service. A vulnerable server could be intentionally stopped by an attacker if it was...

7.5CVSS6.5AI score0.06787EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.35 views

K22183127: Vim vulnerability CVE-2016-1248

Security Advisory Description vim before patch 8.0.0056 does not properly validate values for the 'filetype', 'syntax' and 'keymap' options, which may result in the execution of arbitrary code if a file with a specially crafted modeline is opened. CVE-2016-1248 Impact A local attacker may abuse...

7.8CVSS6.7AI score0.25314EPSS
Exploits2Affected Software23
F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.35 views

K16393: NTP vulnerability CVE-2014-9751

Security Advisory Description Some kernels do not offer protection for ::1 source addresses on IPv6 interfaces. Since NTP's access control mechanism is based on source address and localhost addresses generally have no restrictions, an attacker may be able to send malicious control and configurati...

6.8CVSS7.1AI score0.04532EPSS
Exploits0Affected Software19
F5 Networks
F5 Networks
added 2023/02/21 7:51 p.m.35 views

K38941195: BIG-IP Resource Administrator vulnerability CVE-2019-6617

Security Advisory Description On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, 12.1.0-12.1.4, 11.6.1-11.6.3.4, and 11.5.2-11.5.8, a user with the Resource Administrator role is able to overwrite sensitive low-level files such as /etc/passwd using SFTP to modify user permissions, without Advanced Shell...

6.5CVSS6.6AI score0.02258EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:50 p.m.35 views

K60250153: Linux kernel vulnerability CVE-2017-1000112

Security Advisory Description Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSGMORE ipappenddata calls ipufoappenddata to append. However in between two send calls, the append path can be switched from UFO to non-UFO one, which lead...

7CVSS6.7AI score0.20797EPSS
Exploits19
F5 Networks
F5 Networks
added 2023/02/21 7:49 p.m.35 views

K38456756: Kernel vulnerability CVE-2018-18445

Security Advisory Description In the Linux kernel 4.14.x, 4.15.x, 4.16.x, 4.17.x, and 4.18.x before 4.18.13, faulty computation of numeric bounds in the BPF verifier permits out-of-bounds memory accesses because adjustscalarminmaxvals in kernel/bpf/verifier.c mishandles 32-bit right shifts...

7.8CVSS5.8AI score0.00533EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:48 p.m.35 views

K84591451: Intel AMT vulnerabilities CVE-2019-0092, CVE-2019-0094, CVE-2019-0097, and CVE-2019-0096

Security Advisory Description CVE-2019-0092 Insufficient input validation vulnerability in subsystem for IntelR AMT before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 may allow an unauthenticated user to potentially enable escalation of privilege via physical access. CVE-2019-0094 Insufficient...

8CVSS5.3AI score0.0122EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:48 p.m.35 views

K52013062: Ansible Engine vulnerability CVE-2020-14365

Security Advisory Description A flaw was found in the Ansible Engine, in ansible-engine 2.8.x before 2.8.15 and ansible-engine 2.9.x before 2.9.13, when installing packages using the dnf module. GPG signatures are ignored during installation even when disablegpgcheck is set to False, which is the...

7.1CVSS8.1AI score0.00233EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:41 p.m.35 views

K16831: BSD regex library vulnerability CVE-2015-2305

Security Advisory Description Description Integer overflow in the regcomp implementation in the Henry Spencer BSD regex library aka rxspencer alpha3.8.g5 on 32-bit platforms, as used in NetBSD through 6.1.5 and other products, might allow context-dependent attackers to execute arbitrary code via ...

6.8CVSS8.2AI score0.0837EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:40 p.m.35 views

K8917: Linux kernel vulnerability CVE-2007-1217

Security Advisory Description Note : Versions that are not listed in this Solution have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the ...

6.9CVSS6.5AI score0.00372EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:38 p.m.35 views

K07051153: TMUI vulnerability CVE-2020-5905

Security Advisory Description In the BIG-IP Configuration utility Network WCCP page, the system does not sanitize all user-provided data before displaying the page. CVE-2020-5905 Impact Authenticated administrative users with access to this page in the Configuration utility may inject code onto t...

6CVSS5.1AI score0.00681EPSS
Exploits0Affected Software11
F5 Networks
F5 Networks
added 2023/02/21 7:37 p.m.35 views

K17317: Apache HTTP server vulnerability CVE-2015-0253

Security Advisory Description The readrequestline function in server/protocol.c in the Apache HTTP Server 2.4.12 does not initialize the protocol structure member, which allows remote attackers to cause a denial of service NULL pointer dereference and process crash by sending a request that lacks...

5CVSS6AI score0.14734EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:32 p.m.35 views

K21426934: Multiple elfutils vulnerabilities

Security Advisory Description CVE-2018-16062 dwarfgetaranges in dwarfgetaranges.c in libdw in elfutils before 2018-08-18 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted file. CVE-2018-16402 libelf/elfend.c in elfutils 0.173 allows remote attackers to...

9.8CVSS7.3AI score0.03691EPSS
Exploits8
F5 Networks
F5 Networks
added 2023/02/21 7:32 p.m.35 views

K15724: OpenSSL vulnerability CVE-2014-3568

Security Advisory Description OpenSSL before 0.9.8zc, 1.0.0 before 1.0.0o, and 1.0.1 before 1.0.1j does not properly enforce the no-ssl3 build option, which allows remote attackers to bypass intended access restrictions via an SSL 3.0 handshake, related to s23clnt.c and s23srvr.c. CVE-2014-3568...

4.3CVSS6.4AI score0.13976EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:31 p.m.35 views

K4447: cURL buffer overflow vulnerability CAN-2005-0490

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

8.8CVSS7.9AI score0.05732EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:31 p.m.35 views

K16341: Linux kernel Controller Area Network (CAN) vulnerability CVE-2010-2959

Security Advisory Description Integer overflow in net/can/bcm.c in the Controller Area Network CAN implementation in the Linux kernel before 2.6.27.53, 2.6.32.x before 2.6.32.21, 2.6.34.x before 2.6.34.6, and 2.6.35.x before 2.6.35.4 allows attackers to execute arbitrary code or cause a denial of...

7.2CVSS8AI score0.03746EPSS
Exploits6Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:30 p.m.35 views

K17475: Linux kernel vulnerability CVE-2015-5707

Security Advisory Description Integer overflow in the sgstartreq function in drivers/scsi/sg.c in the Linux kernel 2.6.x through 4.x before 4.1 allows local users to cause a denial of service or possibly have unspecified other impact via a large iovcount value in a write request. CVE-2015-5707...

4.6CVSS7.4AI score0.00493EPSS
Exploits0Affected Software20
Total number of security vulnerabilities5000