Lucene search
K

6392 matches found

F5 Networks
F5 Networks
added 2024/02/14 1:17 p.m.31 views

K000132800: F5OS QKView utility vulnerability CVE-2024-23607

Security Advisory Description A directory traversal vulnerability exists in the F5OS QKView utility that allows an authenticated attacker to read files outside the QKView directory. CVE-2024-23607 Impact An authenticated attacker may exploit this vulnerability by executing a crafted QKView utilit...

5.5CVSS5.5AI score0.00499EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2023/12/11 9:50 p.m.31 views

K000137871: Linux kernel vulnerability CVE-2023-35001

Security Advisory Description Linux Kernel nftables Out-Of-Bounds Read/Write Vulnerability; nftbyteorder poorly handled vm register contents when CAPNETADMIN is in any user or network namespace CVE-2023-35001 Impact This vulnerability may allow an authenticated attacker with local access to...

7.8CVSS7.4AI score0.01508EPSS
Exploits2Affected Software1
F5 Networks
F5 Networks
added 2023/11/30 1:30 a.m.31 views

K000137734: MariaDB/MySQL vulnerability CVE-2023-22084

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 5.7.43 and prior, 8.0.34 and prior and 8.1.0. Easily exploitable vulnerability allows high privileged attacker with network access via multiple...

4.9CVSS5.1AI score0.01782EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/10/10 10:3 a.m.31 views

K000132420: BIG-IP IPsec vulnerability CVE-2023-41085

Security Advisory Description When IPsec is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2023-41085 Impact Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote unauthenticated attacker to...

7.5CVSS7.7AI score0.00515EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2023/09/29 8:26 p.m.31 views

K000137058: Linux kernel vulnerability CVE-2022-4269

Security Advisory Description A flaw was found in the Linux kernel Traffic Control TC subsystem. Using a specific networking configuration redirecting egress packets to ingress using TC action "mirred" a local unprivileged user could trigger a CPU soft lockup ABBA deadlock when the transport...

5.5CVSS6.1AI score0.00198EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/08/15 7:38 a.m.31 views

K000135854: ESAPI (The OWASP Enterprise Security API) vulnerability CVE-2022-23457

Security Advisory Description ESAPI The OWASP Enterprise Security API is a free, open source, web application security control library. Prior to version 2.3.0.0, the default implementation of Validator.getValidDirectoryPathString, String, File, boolean may incorrectly treat the tested input strin...

9.8CVSS7.2AI score0.02829EPSS
Exploits2
F5 Networks
F5 Networks
added 2023/07/27 7:40 p.m.31 views

K000135637: Java vulnerability CVE-2023-22049

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition, Oracle GraalVM for JDK product of Oracle Java SE component: Libraries. Supported versions that are affected are Oracle Java SE: 8u371, 8u371-perf, 11.0.19, 17.0.7, 20.0.1; Oracle GraalVM Enterpri...

3.7CVSS4.9AI score0.01316EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/07/24 6:40 p.m.31 views

K000135555: Java vulnerabilities CVE-2020-2756 and CVE-2020-2757

Security Advisory Description CVE-2020-2756 Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Serialization. Supported versions that are affected are Java SE: 7u251, 8u241, 11.0.6 and 14; Java SE Embedded: 8u241. Difficult to exploit vulnerability allows...

4.3CVSS6AI score0.04211EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2023/06/30 3:14 a.m.31 views

K000135314: GO vulnerability CVE-2022-28327

Security Advisory Description The generic P-256 feature in crypto/elliptic in Go before 1.17.9 and 1.18.x before 1.18.1 allows a panic via long scalar input. CVE-2022-28327 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Developme...

7.5CVSS7.4AI score0.04195EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/06/25 11:2 p.m.31 views

K000135223: Apache Tomcat vulnerability CVE-2023-34981

Security Advisory Description A regression in the fix for bug 66512 in Apache Tomcat 11.0.0-M5, 10.1.8, 9.0.74 and 8.5.88 meant that, if a response did not include any HTTP headers no AJP SENDHEADERS messare woudl be sent for the response which in turn meant that at least one AJP proxy modproxyaj...

7.5CVSS7.4AI score0.01116EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/05/11 5:54 p.m.31 views

K000134573: MySQL vulnerability CVE-2023-21971

Security Advisory Description Vulnerability in the MySQL Connectors product of Oracle MySQL component: Connector/J. Supported versions that are affected are 8.0.32 and prior. Difficult to exploit vulnerability allows high privileged attacker with network access via multiple protocols to compromis...

5.3CVSS4.5AI score0.01286EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/05/04 9:42 p.m.31 views

K000134475: Multiple MySQL vulnerabilities

Security Advisory Description CVE-2023-21911 Vulnerability in the MySQL Server product of Oracle MySQL component: InnoDB. Supported versions that are affected are 8.0.32 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple protocols to...

7.5CVSS5.4AI score0.01501EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/04/28 4:27 p.m.31 views

K000133710: apache-commons-compress vulnerability CVE-2021-36090

Security Advisory Description When reading a specially crafted ZIP archive, Compress can be made to allocate large amounts of memory that finally leads to an out of memory error even for very small inputs. This could be used to mount a denial of service attack against services that use Compress'...

7.5CVSS6.2AI score0.12945EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/04/27 12:53 a.m.31 views

K000133652: Python vulnerability CVE-2018-18074

Security Advisory Description The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network. CVE-2018-18074 Impact Fo...

7.5CVSS7.7AI score0.07443EPSS
Exploits2
F5 Networks
F5 Networks
added 2023/04/03 6:46 a.m.31 views

K000133317: Intel software vulnerability CVE-2022-21163

Security Advisory Description Improper access control in the Crypto API Toolkit for IntelR SGX before version 2.0 commit ID 91ee496 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2022-21163 Impact There is no impact; F5 products are not affecte...

8.4CVSS7.6AI score0.00248EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/03/28 6:54 a.m.31 views

K000133223: Samba vulnerability CVE-2022-3437

Security Advisory Description A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrapdes and unwrapdes3 routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc allocated...

6.5CVSS6.7AI score0.0369EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/22 12:2 a.m.31 views

K000132665: Apache HTTPD vulnerability CVE-2022-37436

Security Advisory Description Prior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncated early, resulting in some headers being incorporated into the response body. If the later headers have any security purpose, they will not be interpreted by the...

5.3CVSS6.6AI score0.57941EPSS
Exploits0Affected Software15
F5 Networks
F5 Networks
added 2023/02/21 9:38 p.m.31 views

K000132703: HAProxy vulnerability CVE-2021-40346

Security Advisory Description An integer overflow exists in HAProxy 2.0 through 2.5 in htxaddheader that can be exploited to perform an HTTP request smuggling attack, allowing an attacker to bypass all configured http-request HAProxy ACLs and possibly other ACLs. CVE-2021-40346 Impact There is no...

7.5CVSS8.1AI score0.57934EPSS
Exploits6
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.31 views

K60924046: Linux kernel vulnerability CVE-2019-12615

Security Advisory Description An issue was discovered in getvdevportnodeinfo in arch/sparc/kernel/mdesc.c in the Linux kernel through 5.1.6. There is an unchecked kstrdupconst of nodeinfo-vdevport.name, which might allow an attacker to cause a denial of service NULL pointer dereference and system...

7.8CVSS6.3AI score0.03574EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.31 views

K55143785: NSS vulnerability CVE-2017-7502

Security Advisory Description Null pointer dereference vulnerability in NSS since 3.24.0 was found when server receives empty SSLv2 messages resulting into denial of service by remote attacker. CVE-2017-7502 Impact There is no impact; F5 products are not affected by this vulnerability. Security...

7.5CVSS7.5AI score0.04302EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.31 views

K46524395: Appliance mode vulnerability CVE-2019-6614

Security Advisory Description On BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, internal methods used to prevent arbitrary file overwrites in Appliance Mode were not fully effective. An authenticated attacker with a high privilege level may be able to bypass protections implemented i...

6.5CVSS6.6AI score0.01435EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.31 views

K51220077: BIG-IP APM Edge Client vulnerability CVE-2018-15316

Security Advisory Description The BIG-IP APM Edge Client component loads the policy library with user permission and bypassing the endpoint checks. CVE-2018-15316 Impact A malicious user can exploit this vulnerability on the APM Edge Client by injecting a library file which will be loaded by the...

5.5CVSS5.5AI score0.00592EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2023/02/21 8:2 p.m.31 views

K11274054: GNU C Library vulnerability CVE-2018-6551

Security Advisory Description The malloc implementation in the GNU C Library aka glibc or libc6, from version 2.24 to 2.26 on powerpc, and only in version 2.26 on i386, did not properly handle malloc calls with arguments close to SIZEMAX and could return a pointer to a heap region that is smaller...

9.8CVSS9.2AI score0.02231EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:1 p.m.31 views

K05510205: Linux kernel vulnerability CVE-2018-14678

Security Advisory Description An issue was discovered in the Linux kernel through 4.17.11, as used in Xen through 4.11.x. The xenfailsafecallback entry point in arch/x86/entry/entry64.S does not properly maintain RBX, which allows local users to cause a denial of service uninitialized memory usag...

7.8CVSS6.1AI score0.00409EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 8:1 p.m.31 views

K15401: OpenSSL vulnerability CVE-2012-2333

Security Advisory Description Integer underflow in OpenSSL before 0.9.8x, 1.0.0 before 1.0.0j, and 1.0.1 before 1.0.1c, when TLS 1.1, TLS 1.2, or DTLS is used with CBC encryption, allows remote attackers to cause a denial of service buffer over-read or possibly have unspecified other impact via a...

6.8CVSS9AI score0.28154EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2023/02/21 8:1 p.m.31 views

K18955141: GnuTLS vulnerability CVE-2018-16868

Security Advisory Description A Bleichenbacher type side-channel based padding oracle attack was found in the way gnutls handles verification of RSA decrypted PKCS1 v1.5 data. An attacker who is able to run process on the same physical core as the victim process, could use this to extract plainte...

5.6CVSS4.8AI score0.00573EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.31 views

K38315305: FreeType vulnerability CVE-2015-9290

Security Advisory Description In FreeType before 2.6.1, a buffer over-read occurs in type1/t1parse.c on function T1GetPrivateDict where there is no check that the new values of cur and limit are sensible before going to Again. CVE-2015-9290 Impact A local unprivileged attacker can perform a...

9.8CVSS9.3AI score0.02746EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 8:0 p.m.31 views

K43945001: F5 TMM vulnerability CVE-2017-6147

Security Advisory Description An undisclosed type of responses may cause TMM to restart, causing an interruption of service when "SSL Forward Proxy" setting is enabled in both the Client and Server SSL profiles assigned to a BIG-IP Virtual Server. CVE-2017-6147 Impact If the SSL Forward Proxy...

5.9CVSS5.8AI score0.01331EPSS
Exploits0Affected Software10
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.31 views

K5873: PAM conversation stack corruption in OpenSSH - CVE-2003-0787

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

7.5CVSS7.9AI score0.0166EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:58 p.m.31 views

K46337613: NodeJS vulnerability CVE-2015-8315

Security Advisory Description The ms package before 0.7.1 for Node.js allows attackers to cause a denial of service CPU consumption via a long version string, aka a "regular expression denial of service ReDoS. CVE-2015-8315 Impact There is no impact; F5 products are not affected by this...

7.8CVSS7.4AI score0.06824EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.31 views

K13434228: Apache Struts vulnerability CVE-2012-0392

Security Advisory Description The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whitelist, which allows remote attackers to execute arbitrary commands via a crafted HTTP Cookie header that triggers Java code execution through a static method...

6.8CVSS9.5AI score0.96787EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.31 views

K58581302: Archive_Tar vulnerabilities CVE-2020-28948 and CVE-2020-28949

Security Advisory Description CVE-2020-28948 ArchiveTar through 1.4.10 allows an unserialization attack because phar: is blocked but PHAR: is not blocked. CVE-2020-28949 ArchiveTar through 1.4.10 has :// filename sanitization only to address phar attacks, and thus any other stream-wrapper attack...

7.8CVSS7.6AI score0.84554EPSS
Exploits5
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.31 views

K90879323: BIG-IP 11.5.4 HF3 regression may modify security configurations

Security Advisory Description F5 has discovered a regression in BIG-IP 11.5.4 HF3, which has the potential to create a security exposure during the installation process. Operating with an abundance of caution, F5 has decided to remove 11.5.4 HF3 from the Downloads site. To correct the regression,...

6.5AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.31 views

K85664507: Linux kernel vulnerability CVE-2017-17852

Security Advisory Description kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging mishandling of 32-bit ALU ops. CVE-2017-17852 Impact There is no impact; F5 products are...

7.8CVSS6.7AI score0.00358EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.32 views

K55031185: demangler in GNU Libiberty vulnerability CVE-2016-6131

Security Advisory Description The demangler in GNU Libiberty allows remote attackers to cause a denial of service infinite loop, stack overflow, and crash via a cycle in the references of remembered mangled types. CVE-2016-6131 Impact There is no impact; F5 products are not affected by this...

7.5CVSS7.5AI score0.04619EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.31 views

K77452266: Intel CPU vulnerability CVE-2018-12171

Security Advisory Description Privilege escalation in Intel Baseboard Management Controller BMC firmware before version 1.43.91f76955 may allow an unprivileged user to potentially execute arbitrary code or perform denial of service over the network. CVE-2018-12171 Impact There is no impact; F5...

9.8CVSS9.9AI score0.02136EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:55 p.m.32 views

K60381308: Intel CPU vulnerability CVE-2018-3655

Security Advisory Description A vulnerability in a subsystem in Intel CSME before version 11.21.55, Intel Server Platform Services before version 4.0 and Intel Trusted Execution Engine Firmware before version 3.1.55 may allow an unauthenticated user to potentially modify or disclose information v...

7.3CVSS6.6AI score0.00433EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:54 p.m.31 views

K04154823: Oracle Java SE vulnerability CVE-2019-2426

Security Advisory Description Vulnerability in the Java SE component of Oracle Java SE subcomponent: Networking. Supported versions that are affected are Java SE: 7u201, 8u192 and 11.0.1; Java SE Embedded: 8u191. Difficult to exploit vulnerability allows unauthenticated attacker with network acce...

4.3CVSS5.8AI score0.02575EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:53 p.m.31 views

K54308152: cURL vulnerability CVE-2021-22923

Security Advisory Description When curl is instructed to get content using the metalink feature, and a user name and password are used to download the metalink XML file, those same credentials are then subsequently passed on to each of the servers from which curl will download or try to download...

5.3CVSS6.6AI score0.01843EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:51 p.m.31 views

K17443: Perl vulnerability CVE-2007-5116

Security Advisory Description Buffer overflow in the polymorphic opcode support in the Regular Expression Engine regcomp.c in Perl 5.8 allows context-dependent attackers to execute arbitrary code by switching from byte to Unicode UTF characters in a regular expression. CVE-2007-5116 Impact There...

7.5CVSS9.6AI score0.0483EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:46 p.m.31 views

K15553: Kerberos vulnerability CVE-2014-4343

Security Advisory Description Double free vulnerability in the initctxreselect function in the SPNEGO initiator in lib/gssapi/spnego/spnegomech.c in MIT Kerberos 5 aka krb5 1.10.x through 1.12.x before 1.12.2 allows remote attackers to cause a denial of service memory corruption or possibly execu...

7.6CVSS8.7AI score0.06419EPSS
Exploits0Affected Software3
F5 Networks
F5 Networks
added 2023/02/21 7:45 p.m.31 views

K56237129: Linux kernel vulnerability in non-GENERIC_TIME systems CVE-2010-2243

Security Advisory Description A vulnerability exists in kernel/time/clocksource.c in the Linux kernel before 2.6.34 where on non-GENERICTIME systems GENERICTIME=n, accessing /sys/devices/system/clocksource/clocksource0/currentclocksource results in an OOPS. CVE-2010-2243 Impact There is no impact...

7.8CVSS7.1AI score0.02505EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:45 p.m.31 views

K3015: FIPS hardware vulnerability - nCipher Advisory #9 - CAN-2004-0320

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

2.1CVSS6.3AI score0.00336EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:42 p.m.31 views

K59957337: ASM Cloud Security Services authentication vulnerability CVE-2019-6687

Security Advisory Description The BIG-IP ASM Cloud Security Services profile uses a built-in verification mechanism that fails to properly authenticate the X.509 certificate of remote endpoints. CVE-2019-6687 Impact This vulnerability may allow man-in-the-middle attackers to intercept traffic...

7.4CVSS7.4AI score0.00483EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:41 p.m.31 views

K1877: OpenSSH Remote Challenge Vulnerability - CAN-2001-1279

Security Advisory Description Note: Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

7.5CVSS6.6AI score0.04784EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:41 p.m.31 views

K15180: OpenSSL vulnerability CVE-2013-4353

Security Advisory Description The ssl3takemac function in ssl/s3both.c in OpenSSL 1.0.1 before 1.0.1f allows remote TLS servers to cause a denial of service NULL pointer dereference and application crash via a crafted Next Protocol Negotiation record in a TLS handshake. CVE-2013-4353 Impact Remot...

4.3CVSS7.6AI score0.11851EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:31 p.m.31 views

K15343: OpenSSL vulnerability CVE-2014-0221

Security Advisory Description The dtls1getmessagefragment function in d1both.c in OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h allows remote attackers to cause a denial of service recursion and client crash via a DTLS hello message in an invalid DTLS handshake. CVE-2014-02...

4.3CVSS6.8AI score0.87892EPSS
Exploits0Affected Software17
F5 Networks
F5 Networks
added 2023/02/21 7:28 p.m.31 views

K15405: OpenSSL 0.9.8l vulnerability CVE-2009-4355

Security Advisory Description Memory leak in the zlibstatefulfinish function in crypto/comp/czlib.c in OpenSSL 0.9.8l and earlier and 1.0.0 Beta through Beta 4 allows remote attackers to cause a denial of service memory consumption via vectors that trigger incorrect calls to the...

5CVSS7.9AI score0.08941EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:27 p.m.31 views

K11503: BIND 9 vulnerability CVE-2009-0265

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about F5's security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

7.5CVSS7.7AI score0.02474EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:26 p.m.31 views

K41107914: iControl REST vulnerability CVE-2016-9251

Security Advisory Description In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of privileges through a crafted iControl REST connection. CVE-2016-9251 Impact An authenticated attacker may be able to cause an escalation of privileges through a crafte...

8.8CVSS8.7AI score0.01514EPSS
Exploits0Affected Software10
Total number of security vulnerabilities5000