Lucene search
K

6389 matches found

F5 Networks
F5 Networks
added 2026/04/21 8:22 p.m.8 views

K000160933: OpenSSL for Windows vulnerability CVE-2023-4807

Security Advisory Description Issue summary: The POLY1305 MAC message authentication code implementation contains a bug that might corrupt the internal state of applications on the Windows 64 platform when running on newer X8664 processors supporting the AVX512-IFMA instructions. Impact summary: ...

7.8CVSS5.9AI score0.00862EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/21 8:21 p.m.15 views

K000160934: Multiple Go vulnerabilities

Security Advisory Description CVE-2023-45285 Using go get to fetch a module with the ".git" suffix may unexpectedly fallback to the insecure "git://" protocol if the module is unavailable via the secure "https://" and "git+ssh://" protocols, even if GOINSECURE is not set for said module. This onl...

8.6CVSS6.5AI score0.01137EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/04/20 9:8 p.m.36 views

K000160902: Intel UEFI vulnerability CVE-2025-20027

Security Advisory Description Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may...

7.1CVSS5.7AI score0.00102EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
added 2026/04/20 3:43 p.m.10 views

K000160908: Linux kernel vulnerability CVE-2019-15902

Security Advisory Description A backporting error was discovered in the Linux stable/longterm kernel 4.4.x through 4.4.190, 4.9.x through 4.9.190, 4.14.x through 4.14.141, 4.19.x through 4.19.69, and 5.2.x through 5.2.11. Misuse of the upstream "x86/ptrace: Fix possible spectre-v1 in...

5.6CVSS5.8AI score0.00586EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/04/20 3:9 p.m.11 views

K000160906: Linux kernel vulnerability CVE-2021-35477

Security Advisory Description In the Linux kernel through 5.13.7, an unprivileged BPF program can obtain sensitive information from kernel memory via a Speculative Store Bypass side-channel attack because a certain preempting store operation does not necessarily occur before a store operation tha...

5.5CVSS5.7AI score0.0046EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/17 3:1 p.m.8 views

K000160873: Linux kernel vulnerability CVE-2026-23317

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: drm/vmwgfx: Return the correct value in vmwtranslateptr functions Before the referenced fixes these functions used a lookup function that returned a pointer. This was changed to another lookup functi...

7.8CVSS5.6AI score0.00129EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/16 11:21 p.m.10 views

K000160853: Multiple Vim vulnerabilities

Security Advisory Description CVE-2026-28417 Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the netrw standard plugin bundled with Vim. By inducing a user to open a crafted URL e.g., using the scp:// protocol handler, an...

7.8CVSS6.5AI score0.01162EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/16 7:15 a.m.10 views

K000160829: Apache HTTP Server Vulnerabilities CVE-2025-55753, CVE-2025-58098, CVE-2025-59775

Security Advisory Description CVE-2025-55753 An integer overflow in the case of failed ACME certificate renewal leads, after a number of failures 30 days in default configurations, to the backoff timer becoming 0. Attempts to renew the certificate then are repeated without delays until it succeed...

8.3CVSS7.1AI score0.01527EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/16 2:2 a.m.9 views

K000160822: Perl vulnerability CVE-2026-4177

Security Advisory Description YAML::Syck versions through 1.36 for Perl has several potential security vulnerabilities including a high-severity heap buffer overflow in the YAML emitter. The heap overflow occurs when class names exceed the initial 512-byte allocation. The base64 decoder could rea...

9.1CVSS6AI score0.00429EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 4:15 p.m.17 views

K000160723: libxslt vulnerability CVE-2025-10911

Security Advisory Description A use-after-free vulnerability was found in libxslt while parsing XSL nodes that may lead to the dereference of expired pointers and application crash. CVE-2025-10911 Impact There is no impact; F5 products are not affected by this vulnerability. F5 previously reporte...

5.5CVSS5.8AI score0.00161EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 4:0 p.m.13 views

K000160741: Linux kernel vulnerability CVE-2025-37891

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: ALSA: ump: Fix buffer overflow at UMP SysEx message conversion. The conversion function from MIDI 1.0 to UMP packet contains an internal buffer to keep the incoming MIDI bytes, and its size is 4, as ...

7.8CVSS5.9AI score0.00205EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 2:54 p.m.13 views

K000160740: Linux kernel vulnerability CVE-2026-23334

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: can: usb: f81604: handle short interrupt urb messages properly If an interrupt urb is received that is not the correct length, properly detect it and don't attempt to treat the data as valid...

5.5CVSS5.7AI score0.00122EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 9:37 a.m.15 views

K000160736: Spring Cloud Gateway vulnerability CVE-2026-22750

Security Advisory Description When configuring SSL bundles in Spring Cloud Gateway by using the configuration property spring.ssl.bundle, the configuration was silently ignored and the default SSL configuration was used instead. Note: The 4.2.x branch is no longer under open source support. If yo...

7.5CVSS5.8AI score0.00217EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 7:18 a.m.14 views

K000160730: Microsoft semantic kernel Python SDK vulnerability CVE-2026-26030

Security Advisory Description Semantic Kernel, Microsoft's semantic kernel Python SDK, has a remote code execution vulnerability in versions prior to 1.39.4, specifically within the InMemoryVectorStore filter functionality. The problem has been fixed in version python-1.39.4. Users should upgrade...

9.9CVSS6.3AI score0.02914EPSS
Exploits2
F5 Networks
F5 Networks
added 2026/04/13 3:59 a.m.11 views

K000160725: Apache Solr vulnerability CVE-2026-22022

Security Advisory Description Deployments of Apache Solr 5.3.0 through 9.10.0 that rely on Solr's "Rule Based Authorization Plugin" are vulnerable to allowing unauthorized access to certain Solr APIs, due to insufficiently strict input validation in those components. Only deployments that meet al...

8.2CVSS5.8AI score0.00491EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 3:58 a.m.16 views

K000160726: Apache Ranger vulnerability CVE-2025-59059

Security Advisory Description Remote Code Execution Vulnerability in NashornScriptEngineCreator is reported in Apache Ranger versions = 2.7.0. Users are recommended to upgrade to version 2.8.0, which fixes this issue. CVE-2025-59059 Impact There is no impact; F5 products are not affected by this...

9.8CVSS5.8AI score0.01244EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/04/13 12:7 a.m.14 views

K000160722: Linux kernel vulnerability CVE-2026-23324

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: can: usb: etases58x: correctly anchor the urb in the read bulk callback When submitting an urb, that is using the anchor pattern, it needs to be anchored before submitting it otherwise it could be...

5.5CVSS5.7AI score0.00123EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/13 12:3 a.m.13 views

K000160721: libxslt vulnerability CVE-2025-11731

Security Advisory Description A flaw was found in the exsltFuncResultComp function of libxslt, which handles EXSLT elements during stylesheet parsing. Due to improper type handling, the function may treat an XML document node as a regular XML element node, resulting in a type confusion. This can...

3.1CVSS5.8AI score0.00264EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/09 11:35 p.m.18 views

K000160700: Log4J vulnerability CVE-2025-68161

Security Advisory Description The Socket Appender in Apache Log4j Core versions 2.0-beta9 through 2.25.2 does not perform TLS hostname verification of the peer certificate, even when the verifyHostName https:// logging.apache . org/log4j/2.x/manual/appenders/network...

6.3CVSS6.5AI score0.00743EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/04/09 9:43 a.m.10 views

K000160686: React framework vulnerability CVE-2026-23869

Security Advisory Description A denial of service vulnerability exists in React Server Components, affecting the following packages: react-server-dom-parcel, react-server-dom-turbopack and react-server-dom-webpack versions 19.0.0 through 19.0.4, 19.1.0 through 19.1.5, and 19.2.0 through 19.2.4. T...

7.5CVSS5.9AI score0.01551EPSS
Exploits4
F5 Networks
F5 Networks
added 2026/04/09 2:34 a.m.22 views

K000160685: Linux kernel vulnerability CVE-2025-40322

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: fbdev: bitblit: bound-check glyph index in bitputcs bitputcsaligned/unaligned derived the glyph pointer from the character value masked by 0xff/0x1ff, which may exceed the actual font's glyph count a...

6.1AI score0.00175EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/08 6:38 p.m.12 views

K000160680: Node.js vulnerability CVE-2026-21636

Security Advisory Description A flaw in Node.js's permission model allows Unix Domain Socket UDS connections to bypass network restrictions when --permission is enabled. Even without --allow-net, attacker-controlled inputs such as URLs or socketPath options can connect to arbitrary local sockets...

10CVSS6.1AI score0.00663EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/04/08 3:47 p.m.8 views

K000160663: Moby vulnerability CVE-2025-54410

Security Advisory Description Moby is an open source container framework developed by Docker Inc. that is distributed as Docker Engine, Mirantis Container Runtime, and various other downstream projects/products. A firewalld vulnerability affects Moby releases before 28.0.0. When firewalld reloads...

5.2CVSS6.6AI score0.00152EPSS
Exploits0Affected Software3
F5 Networks
F5 Networks
added 2026/04/07 12:58 a.m.8 views

K000160641: pac4j vulnerability CVE-2026-29000

Security Advisory Description pac4j-jwt versions prior to 4.5.9, 5.7.9, and 6.3.3 contain an authentication bypass vulnerability in JwtAuthenticator when processing encrypted JWTs that allows remote attackers to forge authentication tokens. Attackers who possess the server's RSA public key can...

9.3CVSS6.9AI score0.05856EPSS
Exploits17
F5 Networks
F5 Networks
added 2026/04/06 7:22 p.m.6 views

K000160637: Intel 800 Series Ethernet vulnerability CVE-2025-24303

Security Advisory Description Improper check for unusual or exceptional conditions in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-24303 Impact This...

8.8CVSS5.9AI score0.00119EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2026/04/06 7:52 a.m.7 views

K000160628: Linux kernel vulnerability CVE-2026-23395

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: Bluetooth: L2CAP: Fix accepting multiple L2CAPECREDCONNREQ Currently the code attempts to accept requests regardless of the command identifier which may cause multiple requests to be marked as pendin...

8.8CVSS5.9AI score0.00249EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/03 2:15 p.m.7 views

K000160611: Linux kernel vulnerabilities CVE-2026-23279, CVE-2026-23281, and CVE-2026-23367

Security Advisory Description CVE-2026-23279 In the Linux kernel, the following vulnerability has been resolved: wifi: mac80211: fix NULL pointer dereference in meshrxcsaframe In meshrxcsaframe, elems-meshchanswparamsie is dereferenced at lines 1638 and 1642 without a prior NULL check:...

7.8CVSS5.7AI score0.00136EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/04/02 4:40 p.m.7 views

K000159875: Apache HTTP Server vulnerability CVE-2025-65082

Security Advisory Description Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache HTTP Server through environment variables set via the Apache configuration unexpectedly superseding variables calculated by the server for CGI programs. This issue affects Apache HT...

6.5CVSS7AI score0.00771EPSS
Exploits0Affected Software3
F5 Networks
F5 Networks
added 2026/04/01 2:17 p.m.8 views

K000160575: ingress-nginx vulnerability CVE-2026-24512

Security Advisory Description A security issue was discovered in ingress-nginx where the rules.http.paths.path Ingress field can be used to inject configuration into nginx. This can lead to arbitrary code execution in the context of the ingress-nginx controller, and disclosure of Secrets accessib...

8.8CVSS6.6AI score0.00501EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 7:50 p.m.7 views

K000160560: OpenSSL vulnerability CVE-2025-69420

Security Advisory Description Issue summary: A type confusion vulnerability exists in the TimeStamp Response verification code where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing a malformed TimeStamp Respons...

7.5CVSS5.9AI score0.00768EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 7:20 p.m.9 views

K000160559: BIND vulnerability CVE-2026-3104

Security Advisory Description A specially crafted domain can be used to cause a memory leak in a BIND resolver simply by querying this domain. This issue affects BIND 9 versions 9.20.0 through 9.20.20, 9.21.0 through 9.21.19, and 9.20.9-S1 through 9.20.20-S1. BIND 9 versions 9.18.0 through 9.18.4...

7.5CVSS5.9AI score0.00698EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/03/31 7:19 p.m.6 views

K000160558: OpenSSL vulnerability CVE-2025-69419

Security Advisory Description Issue summary: Calling PKCS12getfriendlyname function on a maliciously crafted PKCS12 file with a BMPString UTF-16BE friendly name containing non-ASCII BMP code point can trigger a one byte write before the allocated buffer. Impact summary: The out-of-bounds write ca...

7.4CVSS6AI score0.00444EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 7:14 p.m.6 views

K000160557: OpenSSL vulnerability CVE-2025-69418

Security Advisory Description Issue summary: When using the low-level OCB API directly with AES-NI or other hardware-accelerated code paths, inputs whose length is not a multiple of 16 bytes can leave the final partial block unencrypted and unauthenticated. Impact summary: The trailing 1-15 bytes...

4CVSS5.8AI score0.00115EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 7:6 p.m.7 views

K000160556: OpenSSL vulnerability CVE-2026-22796

Security Advisory Description Issue summary: A type confusion vulnerability exists in the signature verification of signed PKCS7 data where an ASN1TYPE union member is accessed without first validating the type, causing an invalid or NULL pointer dereference when processing malformed PKCS7 data...

5.3CVSS5.9AI score0.00502EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 7:2 p.m.5 views

K000160555: OpenSSL vulnerability CVE-2026-22795

Security Advisory Description Issue summary: An invalid or NULL pointer dereference can happen in an application processing a malformed PKCS12 file. Impact summary: An application processing a malformed PKCS12 file can be caused to dereference an invalid or NULL pointer on memory read, resulting ...

5.5CVSS5.8AI score0.00144EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 6:57 p.m.6 views

K000160554: OpenSSL vulnerability CVE-2025-69421

Security Advisory Description Issue summary: Processing a malformed PKCS12 file can trigger a NULL pointer dereference in the PKCS12itemdecryptd2iex function. Impact summary: A NULL pointer dereference can trigger a crash which leads to Denial of Service for an application processing PKCS12 files...

7.5CVSS6.2AI score0.00844EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 6:52 p.m.6 views

K000160552: OpenSSL vulnerability CVE-2025-68160

Security Advisory Description Issue summary: Writing large, newline-free data into a BIO chain using the line-buffering filter where the next BIO performs short writes can trigger a heap-based out-of-bounds write. Impact summary: This out-of-bounds write can cause memory corruption which typicall...

4.7CVSS6.4AI score0.00152EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/31 6:49 p.m.6 views

K000160551: OpenSSL vulnerability CVE-2025-66199

Security Advisory Description Issue summary: A TLS 1.3 connection using certificate compression can be forced to allocate a large buffer before decompression without checking against the configured certificate size limit. Impact summary: An attacker can cause per-connection memory allocations of ...

5.9CVSS6.8AI score0.00403EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/30 12:41 a.m.30 views

K000160515: F5 System Scanner

Topic This article explains how to install and run the F5 System Scanner on BIG-IP and standard x8664 Linux systems. The F5 System Scanner supports the following BIG-IP versions hotfixes EHFs: BIG-IP versions released between October 2025 and May 5, 2026 EHFs released between October 2025 and Apr...

5.8AI score
Exploits0
F5 Networks
F5 Networks
added 2026/03/27 11:17 p.m.11 views

K000160508: Oracle Java SE vulnerability CVE-2026-21945

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Orac...

7.5CVSS6.4AI score0.00864EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/03/27 10:30 p.m.8 views

K000160507: Oracle Java SE vulnerability CVE-2026-21933

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Networking. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1;...

6.1CVSS6.5AI score0.00261EPSS
Exploits1
F5 Networks
F5 Networks
added 2026/03/27 10:25 p.m.8 views

K000160506: Oracle Java SE vulnerability CVE-2026-21932

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: AWT, JavaFX. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1;...

7.4CVSS6.8AI score0.00427EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/03/27 9:57 p.m.10 views

K000160501: Oracle Java SE vulnerability CVE-2026-21925

Security Advisory Description Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: RMI. Supported versions that are affected are Oracle Java SE: 8u471, 8u471-b50, 8u471-perf, 11.0.29, 17.0.17, 21.0.9, 25.0.1; Oracle...

4.8CVSS6.4AI score0.00212EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/03/27 5:53 p.m.7 views

K000160486: Indicators of Compromise for c05d5254

Topic This article provides the known indicators of compromise IOCs associated with malicious software c05d5254 and related activity, and actions to take if IOCs are discovered. Important : Customers that were using BIG-IP APM on a vulnerable version at any point in time regardless of current...

5.9AI score
Exploits0
F5 Networks
F5 Networks
added 2026/03/24 1:46 p.m.12 views

K000160336: Out-of-band Security Notification (March 24, 2026)

Security Advisory Description On March 24, 2026, F5 announced the following security issues. This document is intended to serve as an overview of these vulnerabilities to help determine the impact to your F5 devices. You can find the details of each issue in the associated articles. High CVEs...

8.8CVSS5.8AI score0.21621EPSS
Exploits0
F5 Networks
F5 Networks
added 2026/03/24 1:32 p.m.21 views

K000160368: NGINX ngx_stream_ssl_module vulnerability CVE-2026-28755

Security Advisory Description NGINX Plus and NGINX Open Source have a vulnerability in the ngxstreamsslmodule module due to the improper handling of revoked certificates when configured with the sslverifyclient on and sslocsp on directives, allowing the TLS handshake to succeed even after an OCSP...

5.4CVSS5.8AI score0.00133EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2026/03/24 1:31 p.m.20 views

K000160383: NGINX ngx_mail_auth_http_module vulnerability CVE-2026-27651

Security Advisory Description When the ngxmailauthhttpmodule module is enabled on NGINX Plus or NGINX Open Source, undisclosed requests can cause worker processes to terminate. This issue may occur when 1 CRAM-MD5 or APOP authentication is enabled, and 2 the authentication server permits retry by...

8.7CVSS5.8AI score0.00921EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2026/03/24 1:25 p.m.11 views

K000160382: NGINX ngx_http_dav_module vulnerability CVE-2026-27654

Security Advisory Description NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpdavmodule module that might allow an attacker to trigger a buffer overflow to the NGINX worker process; this vulnerability may result in termination of the NGINX worker process or modification of...

8.8CVSS6.1AI score0.21621EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2026/03/24 1:15 p.m.11 views

K000160367: NGINX ngx_mail_smtp_module vulnerability CVE-2026-28753

Security Advisory Description NGINX Plus and NGINX Open Source have a vulnerability in the ngxmailsmtpmodule module due to the improper handling of CRLF sequences in DNS responses. This allows an attacker-controlled DNS server to inject arbitrary headers into SMTP upstream requests, leading to...

6.3CVSS5.8AI score0.00264EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2026/03/24 1:10 p.m.21 views

K000160366: NGINX ngx_http_mp4_module vulnerability CVE-2026-32647

Security Advisory Description NGINX Open Source and NGINX Plus have a vulnerability in the ngxhttpmp4module module, which might allow an attacker to trigger a buffer over-read or over-write to the NGINX worker memory resulting in its termination or possibly code execution, using a specially craft...

8.5CVSS6.1AI score0.00918EPSS
Exploits0Affected Software2
Total number of security vulnerabilities6389