Lucene search
K

6413 matches found

F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.38 views

K20038622: Multiple Apache Tomcat vulnerabilities

Security Advisory Description CVE-2013-1976 The 1 tomcat5, 2 tomcat6, and 3 tomcat7 init scripts, as used in the RPM distribution of Tomcat for JBoss Enterprise Web Server 1.0.2 and 2.0.0, and Red Hat Enterprise Linux 5 and 6, allow local users to change the ownership of arbitrary files via a...

6.9CVSS8.1AI score0.11975EPSS
Exploits7
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.108 views

K40582331: Apache HTTP server vulnerability CVE-2022-28615

Security Advisory Description Apache HTTP Server 2.4.53 and earlier may crash or disclose information due to a read beyond bounds in apstrcmpmatch when provided with an extremely large input buffer. While no code distributed with the server can be coerced into such a call, third-party modules or...

9.1CVSS8.8AI score0.05729EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.115 views

K13335141: Intel CPU vulnerability CVE-2022-21180

Security Advisory Description Improper input validation for some IntelR Processors may allow an authenticated user to potentially cause a denial of service via local access. CVE-2022-21180 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5...

5.5CVSS6.2AI score0.0032EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.60 views

K11546763: Linux kernel vulnerability CVE-2021-3653

Security Advisory Description A flaw was found in the KVM's AMD code for supporting SVM nested virtualization. The flaw occurs when processing the VMCB virtual machine control block provided by the L1 guest to spawn/handle a nested guest L2. Due to improper validation of the "intctl" field, this...

8.8CVSS6.6AI score0.00413EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.21 views

K10244523: Linux kernel vulnerability CVE-2019-0157

Security Advisory Description Insufficient input validation in the IntelR SGX driver for Linux may allow an authenticated user to potentially enable a denial of service via local access. CVE-2019-0157 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory...

5.5CVSS5AI score0.00388EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.35 views

K06024431: BIG-IQ vulnerability CVE-2021-23024

Security Advisory Description The BIG-IQ Configuration utility has an authenticated remote command execution vulnerability in undisclosed pages. CVE-2021-23024 Impact This vulnerability allows an authenticated admin user or a user account assigned with an administrator role and no shell access to...

9CVSS7.5AI score0.05346EPSS
Exploits3Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.46 views

K05032915: GNU Binutils vulnerability CVE-2019-1010204

Security Advisory Description GNU binutils gold gold v1.11-v1.16 GNU binutils v2.21-v2.31.1 is affected by: Improper Input Validation, Signed/Unsigned Comparison, Out-of-bounds Read. The impact is: Denial of service. The component is: gold/fileread.cc:497, elfcpp/elfcppfile.h:644. The attack vect...

5.5CVSS6.5AI score0.01115EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.47 views

K05535399: Linux kernel vulnerability CVE-2017-17855

Security Advisory Description kernel/bpf/verifier.c in the Linux kernel through 4.14.8 allows local users to cause a denial of service memory corruption or possibly have unspecified other impact by leveraging improper use of pointers in place of scalars. CVE-2017-17855 Impact There is no impact; ...

7.8CVSS6.8AI score0.00418EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.51 views

K02931614: Multiple dnsmasq vulnerabilities

Security Advisory Description CVE-2020-25681 A flaw was found in dnsmasq before version 2.83. A heap-based buffer overflow was discovered in the way RRSets are sorted before validating with DNSSEC data. An attacker on the network, who can forge DNS replies such as that they are accepted as valid,...

8.3CVSS7.6AI score0.86692EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.38 views

K01494912: Samba vulnerability CVE-2018-1050

Security Advisory Description All versions of Samba from 4.0.0 onwards are vulnerable to a denial of service attack when the RPC spoolss service is configured to be run as an external daemon. Missing input sanitization checks on some of the input parameters to spoolss RPC calls could cause the...

4.3CVSS6.8AI score0.06691EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.300 views

K29042031: Multiple Spring Framework vulnerabilities

Security Advisory Description On April 5th, 2018, three new vulnerabilities were published in the popular Java web framework called Spring. Details on these vulnerabilities and exploit code are not yet available, and mitigation details may change if and when the exploit code is available. You can...

9.8CVSS8.8AI score0.95649EPSS
Exploits15
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.65 views

K29103455: QEMU 3.0.0 vulnerability CVE-2019-9824

Security Advisory Description tcpemu in slirp/tcpsubr.c aka slirp/src/tcpsubr.c in QEMU 3.0.0 uses uninitialized data in an snprintf call, leading to Information disclosure. CVE-2019-9824 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5...

5.5CVSS6.3AI score0.00515EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.76 views

K32518458: The BIG-IP DNS/GTM system may be exposed to DNS hijacking when the BIG-IP system host name belongs to a public domain name that the BIG-IP owner does not control

Security Advisory Description The BIG-IP DNS formerly known as BIG-IP GTM system may be exposed to DNS hijacking when the BIG-IP system host name belongs to a public domain name that the BIG-IP owner does not control. This issue occurs when all of the following conditions are met: The BIG-IP DNS...

6.2AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.88 views

K27757011: Apache HTTPD vulnerability CVE-2017-15715

Security Advisory Description In Apache httpd 2.4.0 to 2.4.29, the expression specified in could match '$' to a newline character in a malicious filename, rather than matching only the end of the filename. This could be exploited in environments where uploads of some files are are externally...

8.1CVSS6.5AI score0.86006EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.37 views

K23489380: Java vulnerability CVE-2017-10135

Security Advisory Description Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JCE. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Difficult to exploit vulnerability allows...

5.9CVSS6.8AI score0.02598EPSS
Exploits0Affected Software9
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.47 views

K26310765: HTTP/2 profile vulnerability CVE-2022-23012

Security Advisory Description When the HTTP/2 profile is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. CVE-2022-23012 Impact Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote unauthenticate...

7.5CVSS7.5AI score0.0092EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.80 views

K20623215: Apache mod_cache_socache vulnerability CVE-2018-1303

Security Advisory Description A specially crafted HTTP request header could have crashed the Apache HTTP Server prior to version 2.4.30 due to an out of bound read while preparing data to be cached in shared memory. It could be used as a Denial of Service attack against users of modcachesocache...

7.5CVSS7.8AI score0.70783EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.32 views

K16352404: BIG-IQ DCD vulnerability CVE-2021-22996

Security Advisory Description When set up for auto failover, a BIG-IQ Data Collection Device DCD cluster member that receives an undisclosed message may cause the corosync process to abort. This behavior may lead to a denial-of-service DoS and impact the stability of a BIG-IQ high availability HA...

7.5CVSS7.4AI score0.00973EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.258 views

K19150034: PHP vulnerabilities CVE-2022-31625, CVE-2022-31626

Security Advisory Description CVE-2022-31625 In PHP versions 7.4.x below 7.4.30, 8.0.x below 8.0.20, and 8.1.x below 8.1.7, when using Postgres database extension, supplying invalid parameters to the parametrized query may lead to PHP attempting to free memory using uninitialized data as pointers...

8.8CVSS9.4AI score0.5838EPSS
Exploits3
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.76 views

K17321505: Apache Tomcat vulnerability CVE-2019-10072

Security Advisory Description The fix for CVE-2019-0199 was incomplete and did not address HTTP/2 connection window exhaustion on write in Apache Tomcat versions 9.0.0.M1 to 9.0.19 and 8.5.0 to 8.5.40 . By not sending WINDOWUPDATE messages for the connection window stream 0 clients were able to...

7.5CVSS6.6AI score0.72988EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.96 views

K14255532: Linux kernel vulnerability CVE-2019-11487

Security Advisory Description The Linux kernel before 5.1-rc5 allows page-refcount reference count overflow, with resultant use-after-free issues, if about 140 GiB of RAM exists. This is related to fs/fuse/dev.c, fs/pipe.c, fs/splice.c, include/linux/mm.h, include/linux/pipefsi.h,...

7.8CVSS6.7AI score0.00708EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.20 views

K13710800: Intel CSME and SPS vulnerability CVE-2019-0093

Security Advisory Description Insufficient data sanitization vulnerability in HECI subsystem for IntelR CSME before versions 11.8.65, 11.11.65, 11.22.65, 12.0.35 and IntelR SPS before version SPSE305.00.04.027.0 may allow a privileged user to potentially enable information disclosure via local...

4.4CVSS4.5AI score0.00394EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.23 views

K11400411: BIG-IP APM RADIUS authentication vulnerability CVE-2020-5924

Security Advisory Description RADIUS authentication leaks memory when the username for authentication is not set. CVE-2020-5924 Impact This issue may lead to excessive memory consumption. On a BIG-IP system that is configured for high availability HA, this vulnerability may cause a failover event...

5.3CVSS5.4AI score0.01117EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.19 views

K00724442: BIG-IP DNS and GTM DNSSEC security exposure

Security Advisory Description The BIG-IP DNSSEC implementation returns an incorrect NSEC3 record for a DNS query for a resource record type, which does not exist at given name. The incorrect record indicates that only one of TXT/HINFO/RP resource record types exists at given name, even if A or AA...

6.8AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.72 views

K94700053: Intel AMT vulnerability CVE-2017-5689

Security Advisory Description An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Management Technology AMT and Intel Standard Manageability ISM. An unprivileged local attacker could provision manageability features gaining...

10CVSS7.4AI score0.92189EPSS
Exploits7
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.89 views

K02412162: PHP vulnerability CVE-2019-6977

Security Advisory Description gdImageColorMatch in gdcolormatch.c in the GD Graphics Library aka LibGD 2.2.5, as used in the imagecolormatch function in PHP before 5.6.40, 7.x before 7.1.26, 7.2.x before 7.2.14, and 7.3.x before 7.3.1, has a heap-based buffer overflow. This can be exploited by an...

8.8CVSS8.1AI score0.64265EPSS
Exploits7
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.68 views

K00303143: Apache Tomcat vulnerability CVE-2022-34305

Security Advisory Description In Apache Tomcat 10.1.0-M1 to 10.1.0-M16, 10.0.0-M1 to 10.0.22, 9.0.30 to 9.0.64 and 8.5.50 to 8.5.81 the Form authentication example in the examples web application displayed user provided data without filtering, exposing a XSS vulnerability. CVE-2022-34305 Impact A...

6.1CVSS8.1AI score0.06156EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.19 views

K85738358: Intel Ethernet Controller vulnerabilities CVE-2020-24497, CVE-2020-24498, CVE-2020-24500, CVE-2020-24501, and CVE-2020-24505

Security Advisory Description CVE-2020-24497 Insufficient Access Control in the firmware for IntelR E810 Ethernet Controllers before version 1.4.1.13 may allow a privileged user to potentially enable denial of service via local access. CVE-2020-24498 Buffer overflow in the firmware for IntelR E81...

6.5CVSS4.9AI score0.00594EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.49 views

K93554290: Linux kernel vulnerability CVE-2018-19407

Security Advisory Description The vcpuscanioapic function in arch/x86/kvm/x86.c in the Linux kernel through 4.19.2 allows local users to cause a denial of service NULL pointer dereference and BUG via crafted system calls that reach a situation where ioapic is uninitialized. CVE-2018-19407 Impact...

5.5CVSS5.8AI score0.00477EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.27 views

K84141859: Apache Traffic Control vulnerability CVE-2019-12405

Security Advisory Description Improper authentication is possible in Apache Traffic Control versions 3.0.0 and 3.0.1 if LDAP is enabled for login in the Traffic Ops API component. Given a username for a user that can be authenticated via LDAP, it is possible to improperly authenticate as that use...

9.8CVSS9.2AI score0.03455EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.49 views

K80970653: BIG-IP iRules vulnerability CVE-2022-33962

Security Advisory Description The 'node' iRules command may allow an attacker to bypass the access control restrictions for a self IP address, regardless of the port lockdown settings.CVE-2022-33962 Impact This vulnerability may allow an authenticated attacker with the iRule Manager role to creat...

6.7CVSS6.5AI score0.00187EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.79 views

K75543432: PHP vulnerability CVE-2017-11628

Security Advisory Description In PHP before 5.6.31, 7.x before 7.0.21, and 7.1.x before 7.1.7, a stack-based buffer overflow in the zendinidoop function in Zend/zendiniparser.c could cause a denial of service or potentially allow executing code. NOTE: this is only relevant for PHP applications th...

7.8CVSS8.3AI score0.03365EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.34 views

K79902360: BIG-IP TMUI XSS vulnerability CVE-2019-6625

Security Advisory Description A reflected cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Traffic Management User Interface TMUI also known as the BIG-IP Configuration utility. CVE-2019-6625 Impact To perform the attack, a user must visit a specially crafted URL...

6.1CVSS6.4AI score0.00834EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.36 views

K82038789: big3d vulnerability CVE-2018-5540

Security Advisory Description The big3d process does not irrevocably minimize group privileges at startup. CVE-2018-5540 Impact There is not a known attack vector, but if the big3d process is compromised, it is possible for it to regain the group privileges it was launched with. Security Advisory...

4.4CVSS4.8AI score0.00411EPSS
Exploits0Affected Software7
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.84 views

K74977440: PHPMailer vulnerability CVE-2016-10033

Security Advisory Description The mailSend function in the isMail transport in PHPMailer before 5.2.18, when the Sender property is not set, might allow remote attackers to pass extra parameters to the mail command and consequently execute arbitrary code via a " backslash double quote in a crafte...

9.8CVSS8.2AI score0.99714EPSS
Exploits58Affected Software15
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.682 views

K75408500: PHP FPM vulnerability CVE-2019-11043

Security Advisory Description In PHP versions 7.1.x below 7.1.33, 7.2.x below 7.2.24 and 7.3.x below 7.3.11 in certain configurations of FPM setup it is possible to cause FPM module to write past allocated buffers into the space reserved for FCGI protocol data, thus opening the possibility of...

9.8CVSS8.5AI score0.9947EPSS
Exploits56
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.25 views

K71877858: glibc vulnerability CVE-2015-8982

Security Advisory Description Integer overflow in the strxfrm function in the GNU C Library aka glibc or libc6 before 2.21 allows context-dependent attackers to cause a denial of service crash or possibly execute arbitrary code via a long string, which triggers a stack-based buffer overflow...

8.1CVSS8.5AI score0.03797EPSS
Exploits0Affected Software23
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.47 views

K63525027: Memcached vulnerability CVE-2018-1000115

Security Advisory Description Memcached version 1.5.5 contains an Insufficient Control of Network Message Volume Network Amplification, CWE-406 vulnerability in the UDP support of the memcached server that can result in denial of service via network flood traffic amplification of 1:50,000 has bee...

7.5CVSS6.7AI score0.88368EPSS
Exploits3
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.36 views

K69511801: Samba vulnerability CVE-2019-10197

Security Advisory Description A flaw was found in samba versions 4.9.x up to 4.9.13, samba 4.10.x up to 4.10.8 and samba 4.11.x up to 4.11.0rc3, when certain parameters were set in the samba configuration file. An unauthenticated attacker could use this flaw to escape the shared directory and...

9.1CVSS7.6AI score0.03182EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.35 views

K61918302: ceph-isci-cli vulnerability CVE-2018-14649

Security Advisory Description It was found that ceph-isci-cli package as shipped by Red Hat Ceph Storage 2 and 3 is using python-werkzeug in debug shell mode. This is done by setting debug=True in file /usr/bin/rbd-target-api provided by ceph-isci-cli package. This allows unauthenticated attacker...

10CVSS9.9AI score0.11741EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:57 p.m.69 views

K55136511: Java SE vulnerabilities CVE-2019-2978 and CVE-2019-2989

Security Advisory Description CVE-2019-2978 Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE component: Networking. Supported versions that are affected are Java SE: 7u231, 8u221, 11.0.4 and 13; Java SE Embedded: 8u221. Difficult to exploit vulnerability allows...

6.8CVSS5.8AI score0.03284EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.30 views

K47284724: iControl vulnerability CVE-2016-9256

Security Advisory Description Permissions enforced by iControl can lag behind the actual permissions assigned to a user if the rolemap is not reloaded between the time the permissions are changed and the time of the user's next request. This is a race condition that occurs rarely in normal usage;...

7.5CVSS7.5AI score0.01041EPSS
Exploits0Affected Software10
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.59 views

K51201255: Linux kernel vulnerability CVE-2016-7117

Security Advisory Description Use-after-free vulnerability in the sysrecvmmsg function in net/socket.c in the Linux kernel before 4.5.2 allows remote attackers to execute arbitrary code via vectors involving a recvmmsg system call that is mishandled during error processing. CVE-2016-7117 Impact...

10CVSS7.3AI score0.24299EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.45 views

K41738501: Mozilla NSS vulnerability CVE-2018-12384

Security Advisory Description When handling a SSLv2-compatible ClientHello request, the server doesn't generate a new random value but sends an all-zero value instead. This results in full malleability of the ClientHello for SSLv2 used for TLS 1.2 in all versions prior to NSS 3.39. This does not...

5.9CVSS6AI score0.01496EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.46 views

K43798238: OpenSSL vulnerability CVE-2019-1551

Security Advisory Description There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be ver...

5.3CVSS6.4AI score0.14298EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.57 views

K41582535: Linux kernel vulnerability CVE-2017-18509

Security Advisory Description An issue was discovered in net/ipv6/ip6mr.c in the Linux kernel before 4.11. By setting a specific socket option, an attacker can control a pointer in kernel land and cause an inetcsklistenstop general protection fault, or potentially execute arbitrary code under...

7.8CVSS6.9AI score0.00839EPSS
Exploits1
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.44 views

K40264570: Java SE vulnerabilities CVE-2019-2987, CVE-2019-2988, and CVE-2019-2992

Security Advisory Description CVE-2019-2987 Vulnerability in the Java SE product of Oracle Java SE component: 2D. Supported versions that are affected are Java SE: 11.0.4 and 13. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to...

4.3CVSS5AI score0.03467EPSS
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.65 views

K95204515: Intel CPU vulnerability CVE-2022-21151

Security Advisory Description Processor optimization removal or modification of security-critical code for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2022-21151 Impact This vulnerability may allow an authenticated user...

5.5CVSS5.6AI score0.00347EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.32 views

K90879323: BIG-IP 11.5.4 HF3 regression may modify security configurations

Security Advisory Description F5 has discovered a regression in BIG-IP 11.5.4 HF3, which has the potential to create a security exposure during the installation process. Operating with an abundance of caution, F5 has decided to remove 11.5.4 HF3 from the Downloads site. To correct the regression,...

6.5AI score
Exploits0
F5 Networks
F5 Networks
added 2023/02/21 7:56 p.m.37 views

K25893729: Apache Dubbo vulnerability CVE-2021-25641

Security Advisory Description Each Apache Dubbo server will set a serialization id to tell the clients which serialization protocol it is working on. But for Dubbo versions before 2.7.8 or 2.6.9, an attacker can choose which serialization id the Provider will use by tampering with the byte preamb...

9.8CVSS9.4AI score0.17666EPSS
Exploits2
Total number of security vulnerabilities6413