Lucene search
K

6395 matches found

F5 Networks
F5 Networks
•added 2023/02/21 6:10 p.m.•34 views

K16323: OpenSSL vulnerability CVE-2015-0209

Security Advisory Description Use-after-free vulnerability in the d2iECPrivateKey function in crypto/ec/ecasn1.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a might allow remote attackers to cause a denial of service memory corruption and application...

6.8CVSS7.6AI score0.1633EPSS
Exploits0Affected Software20
F5 Networks
F5 Networks
•added 2023/02/21 6:10 p.m.•34 views

K16318: OpenSSL vulnerability CVE-2015-0287

Security Advisory Description The ASN1itemexd2i function in crypto/asn1/tasndec.c in OpenSSL before 0.9.8zf, 1.0.0 before 1.0.0r, 1.0.1 before 1.0.1m, and 1.0.2 before 1.0.2a does not reinitialize CHOICE and ADB data structures, which might allow attackers to cause a denial of service invalid wri...

5CVSS6.8AI score0.0837EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 6:8 p.m.•34 views

K17172: OpenJDK vulnerability CVE-2015-2638

Security Advisory Description Unspecified vulnerability in Oracle Java SE 6u95, 7u80, and 8u45; JavaFX 2.2.80; and Java SE Embedded 7u75 and 8u33 allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to 2D. CVE-2015-2638 Impact Confidentiality ...

10CVSS4.6AI score0.05679EPSS
Exploits0Affected Software18
F5 Networks
F5 Networks
•added 2023/02/21 6:8 p.m.•34 views

K16715: Multiple LibTIFF vulnerabilities

Security Advisory Description CVE-2013-1960 Heap-based buffer overflow in the t2pprocessjpegstrip function in tiff2pdf in libtiff 4.0.3 and earlier allows remote attackers to cause a denial of service crash and possibly execute arbitrary code via a crafted TIFF image file. CVE-2013-1961 Stack-bas...

9.3CVSS9.5AI score0.11823EPSS
Exploits0Affected Software19
F5 Networks
F5 Networks
•added 2023/02/21 6:7 p.m.•34 views

K09052213: glibc vulnerability CVE-2015-8777

Security Advisory Description The processenvvars function in elf/rtld.c in the GNU C Library aka glibc or libc6 before 2.23 allows local users to bypass a pointer-guarding protection mechanism via a zero value of the LDPOINTERGUARD environment variable. CVE-2015-8777 Impact This vulnerability may...

5.5CVSS6.9AI score0.0057EPSS
Exploits1Affected Software22
F5 Networks
F5 Networks
•added 2023/02/21 6:7 p.m.•34 views

K01471335: BIND vulnerability CVE-2016-2848

Security Advisory Description ISC BIND 9.1.0 through 9.8.4-P2 and 9.9.0 through 9.9.2-P2 allows remote attackers to cause a denial of service assertion failure and daemon exit via malformed options data in an OPT resource record. CVE-2016-2848 Impact A remote attacker may be able to cause a...

7.5CVSS7.5AI score0.25772EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
•added 2023/02/21 6:7 p.m.•34 views

K82356391: Intel CPU vulnerability CVE-2020-0591

Security Advisory Description Improper buffer restrictions in BIOS firmware for some IntelR Processors may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-0591 Impact There is no impact; F5 products are not affected by this vulnerability. F5...

6.7CVSS7AI score0.00308EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 5:33 p.m.•34 views

K06288381: NTP vulnerabilities CVE-2015-7977 and CVE-2015-7978

Security Advisory Description CVE-2015-7977 ntpd in NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to cause a denial of service NULL pointer dereference via a ntpdc reslist command. CVE-2015-7978 NTP before 4.2.8p6 and 4.3.0 before 4.3.90 allows a remote attackers to cause a...

7.5CVSS6.8AI score0.09985EPSS
Exploits0Affected Software22
F5 Networks
F5 Networks
•added 2023/02/21 5:32 p.m.•34 views

K48042976: BIG-IP SSL vulnerability CVE-2016-4545

Security Advisory Description On virtual servers with Secure Sockets Layer SSL profiles enabled, an SSL alert sent during the handshake may produce unnecessary logging and resource consumption on a BIG-IP system that is running 11.5.4 FINAL, possibly causing the Traffic Management Microkernel TMM...

7.5CVSS7.6AI score0.01765EPSS
Exploits0Affected Software9
F5 Networks
F5 Networks
•added 2023/02/21 4:18 p.m.•34 views

K12156: PHP xmlrpc vulnerability - CVE-2010-0397

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...

5CVSS6.3AI score0.11528EPSS
Exploits2
F5 Networks
F5 Networks
•added 2016/11/16 12:0 a.m.•34 views

SOL31542650 - PHP and libGD vulnerability CVE-2016-7568

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

9.8CVSS2.3AI score0.05101EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2016/11/04 12:0 a.m.•34 views

SOL58243048 - Considerations for transferring files from F5 devices

Vulnerability Description The BIG-IP system uses Secure Vault, a secure SSL-encrypted storage system, to securely store sensitive data such as SSL key passphrases, users, and administrator and services passwords. However, files transferred from an F5 device may contain sensitive information such ...

0.3AI score
Exploits0References6
F5 Networks
F5 Networks
•added 2016/08/11 12:0 a.m.•34 views

SOL19784568 - TMM vulnerability CVE-2016-5023

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS1.6AI score0.03046EPSS
Exploits0References11
F5 Networks
F5 Networks
•added 2016/07/14 12:0 a.m.•34 views

SOL05125306 - glibc vulnerability CVE-2016-1234

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS2.5AI score0.05223EPSS
Exploits3References6
F5 Networks
F5 Networks
•added 2016/04/27 12:0 a.m.•34 views

SOL13511366 - PCRE vulnerability CVE-2014-9769

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

7.5CVSS2.7AI score0.02351EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2015/11/02 12:0 a.m.•34 views

SOL17529 - NTP vulnerability CVE-2015-7703

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS1AI score0.03823EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2015/08/12 12:0 a.m.•34 views

SOL17112 - ikiwiki cross-site scripting via openid_identifier vulnerability CVE-2015-2793

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL995...

6.1CVSS1.9AI score0.01688EPSS
Exploits1References3
F5 Networks
F5 Networks
•added 2015/07/10 12:0 a.m.•34 views

SOL16945 - Mailx vulnerabilities CVE-2004-2771 and CVE-2014-7844

CVE-2014-7844 The expand function in fio.c in Heirloom mailx 12.5 and earlier and BSD mailx 8.1.2 and earlier allows remote attackers to execute arbitrary commands via shell meta characters in an email address. CVE-2004-2771 A flaw was found in the way mailx handled the parsing of email addresses...

7.8CVSS8.1AI score0.06858EPSS
Exploits1References4
F5 Networks
F5 Networks
•added 2015/07/09 12:0 a.m.•34 views

SOL16900 - Multiple FreeType vulnerabilities

1The FreeType package exists on the BIG-IP system but is not used in a way that exposes this vulnerability. Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed...

0.1AI score
Exploits0References4Affected Software22
F5 Networks
F5 Networks
•added 2015/07/01 12:0 a.m.•34 views

SOL16830 - Linux vulnerability CVE-2014-8171

Note: As of February 17, 2015, AskF5 Security Advisory articles include the Severity value. Security Advisory articles published before this date do not list a Severity value. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can...

5.5CVSS0.8AI score0.00392EPSS
Exploits0References6
F5 Networks
F5 Networks
•added 2015/04/14 12:0 a.m.•34 views

SOL16416 - GNU C library strxfrm/strcoll overflow vulnerabilities

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

2.1AI score
Exploits0References8Affected Software22
F5 Networks
F5 Networks
•added 2015/04/09 12:0 a.m.•34 views

SOL16383 - Linux RPM vulnerability CVE-2013-6435

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

7.6CVSS2.2AI score0.07669EPSS
Exploits0References10
F5 Networks
F5 Networks
•added 2015/04/03 12:0 a.m.•34 views

SOL16366 - GNU C Library (glibc) vulnerability CVE-2015-1472

Recommended Action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

7.5CVSS2.6AI score0.04688EPSS
Exploits2References4
F5 Networks
F5 Networks
•added 2015/04/02 12:0 a.m.•34 views

SOL16356 - BIND vulnerability CVE-2015-1349

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

5.4CVSS1.5AI score0.22168EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2015/02/09 12:0 a.m.•34 views

SOL16108 - BIND vulnerability CVE-2014-8680

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

5.4CVSS0.8AI score0.08987EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2014/11/03 12:0 a.m.•34 views

SOL15783 - Kerberos vulnerability CVE-2013-1417

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

3.5CVSS2.8AI score0.01932EPSS
Exploits1References4
F5 Networks
F5 Networks
•added 2014/10/09 12:0 a.m.•34 views

SOL15689 - Fine Free file vulnerabilites CVE-2014-1943 and CVE-2014-2270

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy...

5CVSS3.4AI score0.0507EPSS
Exploits1References3
F5 Networks
F5 Networks
•added 2014/06/05 12:0 a.m.•34 views

SOL15314 - OpenSSL vulnerability CVE-2011-4577

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. To...

4.3CVSS1.6AI score0.09331EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2013/07/05 12:0 a.m.•34 views

K10905 : NTP vulnerability - CVE-2009-3563

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

6.4CVSS7.1AI score0.32288EPSS
Exploits3
F5 Networks
F5 Networks
•added 2012/03/14 12:0 a.m.•34 views

SOL13463 - FirePass SQL injection vulnerability - CVE-2012-1777

Recommended action To eliminate this vulnerability, upgrade to a version that is listed in the Versions known to be not vulnerable column in the previous table. F5 strongly recommends installing FirePass HF-377712-1 to address this vulnerability. Supplemental Information CERT advisory regarding...

7.5CVSS6.3AI score0.02327EPSS
Exploits2References9
F5 Networks
F5 Networks
•added 2007/05/16 12:0 a.m.•34 views

SOL5716 - Authentication bypass in PAM LDAP module - CAN-2005-2641

Vulnerability description: Vulnerability in pamldap before 180 does not properly handle a new password policy control, which could allow attackers to gain privileges. Information about this advisory is available at the following locations: US-CERT Vulnerability Note VU778916 pamldap authenticatio...

7.5CVSS0.7AI score0.03645EPSS
Exploits0
F5 Networks
F5 Networks
•added 2007/05/16 12:0 a.m.•34 views

SOL2104 - Buffer read overflow in DNS resolver libraries - CAN-2002-1146

Information about this vulnerability can be found at the following location: Note: This link takes you to a resource outside of AskF5, and it is possible that the information may be removed without our knowledge...

5CVSS1.2AI score0.03279EPSS
Exploits0
F5 Networks
F5 Networks
•added 2005/07/20 12:0 a.m.•34 views

SOL4944 - SSL decryption vulnerabilities - CR47778, CR48873, CR53987, CR54002

Workaround If upgrading is not an immediate option, you can prevent exploitation of these vulnerabilities temporarily by disabling NATIVE ciphers on any clientssl or serverssl profiles that require or request authentication. To do so, add :!NATIVE to the profiles' ciphers option available in the...

3.2AI score
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2026/05/13 12:52 p.m.•33 views

K000159034: BIG-IP HTTP/2 vulnerability CVE-2026-42409

Security Advisory Description When an HTTP/2 profile and an iRule containing the HTTP::redirect or HTTP::respond command are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM process to terminate. CVE-2026-42409 Impact Traffic is disrupted while...

8.7CVSS5.7AI score0.00263EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
•added 2025/03/03 3:1 p.m.•33 views

K000149959: NGINX Unit vulnerability CVE-2025-1695

Security Advisory Description When NGINX Unit with the Java Language Module is in use, undisclosed requests can lead to an infinite loop and cause an increase in CPU resource utilization. CVE-2025-1695 Impact System performance can degrade due to high CPU utilization. This vulnerability allows a...

6.9CVSS6.6AI score0.00552EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2024/12/10 5:17 p.m.•33 views

K000148931: Linux kernel vulnerability CVE-2024-26923

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: afunix: Fix garbage collector racing against connect Garbage collector does not take into account the risk of embryo getting enqueued during the garbage collection. If such embryo has a peer that...

4.7CVSS6.1AI score0.00193EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2024/11/22 6:43 p.m.•33 views

K000148687: qt vulnerabilities CVE-2018-21035, CVE-2015-1290, CVE-2013-0254, and CVE-2023-43114

Security Advisory Description CVE-2018-21035 In Qt through 5.14.1, the WebSocket implementation accepts up to 2GB for frames and 2GB for messages. Smaller limits cannot be configured. This makes it easier for attackers to cause a denial of service memory consumption. CVE-2015-1290 The Google V8...

9.3CVSS7.2AI score0.03296EPSS
Exploits1
F5 Networks
F5 Networks
•added 2024/11/11 11:14 p.m.•33 views

K000148479: Linux kernel vulnerability CVE-2023-52881

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: tcp: do not accept ACK of bytes we never sent This patch is based on a detailed report and ideas from Yepeng Pan and Christian Rossow. ACK seq validation is currently following RFC 5961 5.2 guideline...

5.5CVSS6.2AI score0.00227EPSS
Exploits0Affected Software17
F5 Networks
F5 Networks
•added 2024/11/07 7:32 p.m.•33 views

K000148436: Linux kernel vulnerabilities CVE-2020-36558, CVE-2023-2002, CVE-2023-4622, and CVE-2023-4623

Security Advisory Description CVE-2020-36558 A race condition in the Linux kernel before 5.5.7 involving VTRESIZEX could lead to a NULL pointer dereference and general protection fault. CVE-2023-2002 A vulnerability was found in the HCI sockets implementation due to a missing capability check in...

7.8CVSS6.3AI score0.0147EPSS
Exploits4
F5 Networks
F5 Networks
•added 2024/10/15 11:13 p.m.•33 views

K000141463: Angular JS vulnerabilities CVE-2019-10768 and CVE-2023-26116

Security Advisory Description CVE-2019-10768 In AngularJS before 1.7.9 the function merge could be tricked into adding or modifying properties of Object.prototype using a proto payload. CVE-2023-26116 Versions of the package angular from 1.2.21 are vulnerable to Regular Expression Denial of Servi...

7.5CVSS7.1AI score0.02179EPSS
Exploits2Affected Software12
F5 Networks
F5 Networks
•added 2024/09/30 4:55 p.m.•33 views

K000141253: Python vulnerability CVE-2024-22195

Security Advisory Description Jinja is an extensible templating engine. Special placeholders in the template allow writing code similar to Python syntax. It is possible to inject arbitrary HTML attributes into the rendered HTML template, potentially leading to Cross-Site Scripting XSS. The Jinja...

6.1CVSS8AI score0.00892EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2024/09/26 12:31 p.m.•33 views

K000141194: urllib3 vulnerability CVE-2018-25091

Security Advisory Description urllib3 before 1.24.2 does not remove the authorization HTTP header when following a cross-origin redirect i.e., a redirect that differs in host, port, or scheme. This can allow for credentials in the authorization header to be exposed to unintended hosts or...

6.1CVSS7.3AI score0.00512EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/08/17 3:39 a.m.•33 views

K000140732: BIND vulnerability CVE-2024-1737

Security Advisory Description Resolver caches and authoritative zone databases that hold significant numbers of RRs for the same hostname of any RTYPE can suffer from degraded performance as content is being added or updated, and also when handling client queries for this name. This issue affects...

7.5CVSS8.7AI score0.02114EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2024/07/11 8:47 a.m.•33 views

K000140303: Apache Tomcat vulnerability CVE-2024-34750

Security Advisory Description Improper Handling of Exceptional Conditions, Uncontrolled Resource Consumption vulnerability in Apache Tomcat. When processing an HTTP/2 stream, Tomcat did not handle some cases of excessive HTTP headers correctly. This led to a miscounting of active HTTP/2 streams...

7.5CVSS7.6AI score0.04602EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/07/03 8:26 p.m.•33 views

K000140250: Expat vulnerability CVE-2023-52426

Security Advisory Description libexpat through 2.5.0 allows recursive XML Entity Expansion if XMLDTD is undefined at compile time. CVE-2023-52426 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the...

5.5CVSS6.8AI score0.00373EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/06/18 8:11 p.m.•33 views

K000140042: libldap vulnerability CVE-2020-15719

Security Advisory Description libldap in certain third-party OpenLDAP packages has a certificate-validation flaw when the third-party package is asserting RFC6125 support. It considers CN even when there is a non-matching subjectAltName SAN. This is fixed in, for example, openldap-2.4.46-10.el8 i...

4.2CVSS6.8AI score0.02417EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/05/28 7:47 p.m.•33 views

K000139794: Mozilla NSS vulnerability CVE-2023-5388

Security Advisory Description NSS was susceptible to a timing side-channel attack when performing RSA decryption. This attack could potentially allow an attacker to recover the private data. This vulnerability affects Firefox 124, Firefox ESR 115.9, and Thunderbird 115.9. CVE-2023-5388 Impact An...

6.5CVSS7AI score0.00816EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
•added 2024/05/20 3:40 p.m.•33 views

K000139692: Websense vulnerabilities CVE-2006-2035 and CVE-2010-5144

Security Advisory Description CVE-2006-2035 Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL. CVE-2010-5144 The ISAPI Filter plug-in in Websense Enterprise...

4.3CVSS6.3AI score0.01489EPSS
Exploits1
F5 Networks
F5 Networks
•added 2024/05/14 3:22 p.m.•33 views

K000139608: MySQL Server vulnerability CVE-2024-21087

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Group Replication Plugin. Supported versions that are affected are 8.0.36 and prior and 8.3.0 and prior. Easily exploitable vulnerability allows high privileged attacker with network access...

4.9CVSS5.1AI score0.00885EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/05/10 1:2 p.m.•33 views

K000139577: Node.js vulnerability CVE-2024-21890

Security Advisory Description The Node.js Permission Model does not clarify in the documentation that wildcards should be only used as the last character of a file path. For example: --allow-fs-read=/home/node/.ssh/.pub will ignore pub and give access to everything after .ssh/. This misleading...

6.5CVSS6.4AI score0.00945EPSS
Exploits0
Total number of security vulnerabilities5000