6294 matches found
K50484570: Linux kernel vulnerability CVE-2019-11810
Security Advisory Description An issue was discovered in the Linux kernel before 5.0.7. A NULL pointer dereference can occur when megasascreateframepool fails in megasasalloccmds in drivers/scsi/megaraid/megaraidsasbase.c. This causes a Denial of Service, related to a use-after-free. CVE-2019-118...
K61561040: PHP vulnerability CVE-2018-10547
Security Advisory Description An issue was discovered in ext/phar/pharobject.c in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. There is Reflected XSS on the PHAR 403 and 404 error pages via request data of a request for a .phar file. NOTE: this vulnerabilit...
K28023545: MySQL vulnerability CVE-2022-21515
Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Options. Supported versions that are affected are 5.7.38 and prior and 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple...
K72122162: Binutils vulnerabilities CVE-2018-7569 and CVE-2018-10373
Security Advisory Description CVE-2018-7569 dwarf2.c in the Binary File Descriptor BFD library aka libbfd, as distributed in GNU Binutils 2.30, allows remote attackers to cause a denial of service integer underflow or overflow, and application crash via an ELF file with a corrupt DWARF FORM block...
K92111011: Linux kernel vulnerability CVE-2016-2117
Security Advisory Description The atl2probe function in drivers/net/ethernet/atheros/atlx/atl2.c in the Linux kernel through 4.5.2 incorrectly enables scatter/gather I/O, which allows remote attackers to obtain sensitive information from kernel memory by reading packet data.CVE-2016-2117 Impact...
K78131906: Apache HTTPD vulnerability CVE-2018-1301
Security Advisory Description A specially crafted request could have crashed the Apache HTTP Server prior to version 2.4.30, due to an out of bound access after a size limit is reached by reading the HTTP header. This vulnerability is considered very hard if not impossible to trigger in non-debug...
K65065347: Apache Struts vulnerability CVE-2018-1327
Security Advisory Description The Apache Struts REST Plugin is using XStream library which is vulnerable and allow perform a DoS attack when using a malicious request with specially crafted XML payload. Upgrade to the Apache Struts version 2.5.16 and switch to an optional Jackson XML handler as...
K32562850: jackson-databind vulnerabilities CVE-2019-16943 and CVE-2019-17531
Security Advisory Description CVE-2019-16943 A Polymorphic Typing issue was discovered in FasterXML jackson-databind 2.0.0 through 2.9.10. When Default Typing is enabled either globally or for a specific property for an externally exposed JSON endpoint and the service has the p6spy 3.8.6 jar in t...
K30671731: Apache Shiro vulnerability CVE-2022-40664
Security Advisory Description Apache Shiro before 1.10.0, Authentication Bypass Vulnerability in Shiro when forwarding or including via RequestDispatcher. CVE-2022-40664 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development...
K68785753: ImageMagick vulnerability CVE-2015-8898
Security Advisory Description The WriteImages function in magick/constitute.c in ImageMagick before 6.9.2-4 allows remote attackers to cause a denial of service NULL pointer dereference via a crafted image file. CVE-2015-8898 Impact BIG-IP systems that use a WebAcceleration profile configured wit...
K46514822: Linux TCP stack vulnerability CVE-2016-5696
Security Advisory Description net/ipv4/tcpinput.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for man-in-the-middle attackers to hijack TCP sessions via a blind in-window attack. CVE-2016-5696 Impact Attackers may be able to...
K51753557: PHP vulnerability CVE-2015-9253
Security Advisory Description An issue was discovered in PHP through 7.2.2. The php-fpm master process restarts a child process in an endless loop when using program execution functions e.g., passthru, exec, shellexec, or system with a non-blocking STDIN stream, causing this master process to...
K48355112: PHP vulnerability CVE-2018-10549
Security Advisory Description An issue was discovered in PHP before 5.6.36, 7.0.x before 7.0.30, 7.1.x before 7.1.17, and 7.2.x before 7.2.5. exifreaddata in ext/exif/exif.c has an out-of-bounds read for crafted JPEG data because exifiifaddvalue mishandles the case of a MakerNote that lacks a fin...
K30905674: Linux kernel vulnerability CVE-2014-9904
Security Advisory Description The sndcompresscheckinput function in sound/core/compressoffload.c in the ALSA subsystem in the Linux kernel before 3.17 does not properly check for an integer overflow, which allows local users to cause a denial of service insufficient memory allocation or possibly...
K28003839: tmsh utility vulnerability CVE-2018-15322
Security Advisory Description A BIG-IP user granted with tmsh access may cause the BIG-IP system to experience denial-of-service DoS when the BIG-IP user uses the tmsh utility to run the edit cli preference command and proceeds to save the changes to another filename repeatedly. This action...
K24248011: Traffix SDC Configuration utility vulnerability CVE-2022-27662
Security Advisory Description A stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration utility that allows an attacker to execute template language-specific instructions in the context of the server. CVE-2022-27662 Impact If successful, a...
K63497634: BIG-IP FPS XSS vulnerability CVE-2021-22979
Security Advisory Description A reflected cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility when Fraud Protection Service is provisioned, which allows an attacker to execute JavaScript in the context of the current logged-in user...
K29110929: MacOS vulnerabilities CVE-2019-8675, CVE-2019-8696
Security Advisory Description CVE-2019-8675 A buffer overflow issue was addressed with improved memory handling. This issue is fixed in macOS Mojave 10.14.6, Security Update 2019-004 High Sierra, Security Update 2019-004 Sierra. An attacker in a privileged network position may be able to execute...
K20378113: Linux kernel vulnerability CVE-2020-11565
Security Advisory Description DISPUTED An issue was discovered in the Linux kernel through 5.6.2. mpolparsestr in mm/mempolicy.c has a stack-based out-of-bounds write because an empty nodelist is mishandled during mount option parsing, aka CID-aa9f7d5172fa. NOTE: Someone in the security community...
K35226442: Apache Struts vulnerabilities CVE-2019-0233 and CVE-2019-0230
Security Advisory Description CVE-2019-0233 An access permission override in Apache Struts 2.0.0 to 2.5.20 may cause a Denial of Service when performing a file upload. CVE-2019-0230 Apache Struts 2.0.0 to 2.5.20 forced double OGNL evaluation, when evaluated on raw user input in tag attributes, ma...
K54450124: NSS vulnerability CVE-2021-43527
Security Advisory Description NSS Network Security Services versions prior to 3.73 or 3.68.1 ESR are vulnerable to a heap overflow when handling DER-encoded DSA or RSA-PSS signatures. Applications using NSS for handling signatures encoded within CMS, S/MIME, PKCS \7, or PKCS \12 are likely to be...
K55181425: Wget vulnerability CVE-2016-4971
Security Advisory Description GNU Wget before 1.18 allows remote servers to write to arbitrary files by redirecting a request from HTTP to a crafted FTP resource. CVE-2016-4971 Impact An attacker with local access may be able to upload arbitrary files to the system. Security Advisory Status F5...
K31044532: NGINX Controller vulnerability CVE-2020-5900
Security Advisory Description Insufficient cross-site request forgery CSRF protections for the NGINX Controller user interface. CVE-2020-5900 Impact An attacker can exploit this vulnerability by enticing a victim user to follow a malicious link. A successful exploit can allow the attacker to...
K52833764: OpenSSL vulnerability CVE-2021-23841
Security Advisory Description The OpenSSL public API function X509issuerandserialhash attempts to create a unique hash value based on the issuer and serial number data contained within an X509 certificate. However it fails to correctly handle any errors that may occur while parsing the issuer fie...
K55543151: BIG-IP TMUI vulnerability CVE-2021-23025
Security Advisory Description An authenticated remote command execution vulnerability exists in the BIG-IP Configuration utility. CVE-2021-23025 Impact This vulnerability may allow an authenticated attacker with network access to the Configuration utility through the BIG-IP management port and/or...
K54460845: BIG-IP Edge Client for Windows vulnerability CVE-2022-28714
Security Advisory Description A DLL hijacking vulnerability exists in the BIG-IP Edge Client Windows Installer. CVE-2022-28714 Impact This vulnerability may be exploited to allow an attacker to use malicious Dynamic Link Libraries DLL to gain privilege escalation on the client Windows system...
K46121888: ssldump vulnerability CVE-2018-5519
Security Advisory Description Administrative users by way of undisclosed methods can exploit the ssldump utility to write to arbitrary file paths. For users who do not have Advanced Shell access for example, any user when licensed for Appliance Mode, this allows more permissive file access than...
K51048910: Eclipse Jetty vulnerability CVE-2021-28169
Security Advisory Description For Eclipse Jetty versions = 9.4.40, = 10.0.2, = 11.0.2, it is possible for requests to the ConcatServlet with a doubly encoded path to access protected resources within the WEB-INF directory. For example a request to /concat?/%2557EB-INF/web.xml can retrieve the...
K12183968: PHP vulnerability CVE-2021-21702
Security Advisory Description In PHP versions 7.3.x below 7.3.27, 7.4.x below 7.4.15 and 8.0.x below 8.0.2, when using SOAP extension to connect to a SOAP server, a malicious SOAP server could return malformed XML data as a response that would cause PHP to access a null pointer and thus cause a...
K11255393: Linux kernel vulnerability CVE-2021-41864
Security Advisory Description preallocelemsandfreelist in kernel/bpf/stackmap.c in the Linux kernel before 5.14.12 allows unprivileged users to trigger an eBPF multiplication integer overflow with a resultant out-of-bounds write. CVE-2021-41864 Impact There is no impact; F5 products are not...
K48414132: PHP SOAP vulnerability CVE-2015-8835
Security Advisory Description The makehttpsoaprequest function in ext/soap/phphttp.c in PHP before 5.4.44, 5.5.x before 5.5.28, and 5.6.x before 5.6.12 does not properly retrieve keys, which allows remote attackers to cause a denial of service NULL pointer dereference, type confusion, and...
K46940010: TMM vulnerability CVE-2018-5513
Security Advisory Description A malformed Transport Layer Security TLS handshake causes the Traffic Management Microkernel TMM to stop responding, leading to a disruption of service. This issue is only exposed on the data plane when a Proxy SSL configuration is enabled. The control plane is not...
K49237345: BIG-IP Advanced WAF, ASM, and NGINX App Protect WAF XML encoding security exposure
Security Advisory Description F5 BIG-IP Advanced WAF, BIG-IP ASM, or NGINX App Protect WAF incorrectly handles certain requests. This issue occurs when the following condition is met: Advanced WAF, BIG-IP ASM, or NGINX App Protect WAF handles a malicious request with XML content type and XML...
K03593314: Linux kernel vulnerability CVE-2018-16880
Security Advisory Description A flaw was found in the Linux kernel's handlerx function in the vhostnet driver. A malicious virtual guest, under specific conditions, can trigger an out-of-bounds write in a kmalloc-8 slab on a virtual host which may lead to a kernel memory corruption and a system...
K84900646: Linux kernel vulnerability CVE-2020-14385
Security Advisory Description A flaw was found in the Linux kernel before 5.9-rc4. A failure of the file system metadata validator in XFS can cause an inode with a valid, user-creatable extended attribute to be flagged as corrupt. This can lead to the filesystem being shutdown, or otherwise...
K05125306: glibc vulnerability CVE-2016-1234
Security Advisory Description Stack-based buffer overflow in the glob implementation in GNU C Library aka glibc before 2.24, when GLOBALTDIRFUNC is used, allows context-dependent attackers to cause a denial of service crash via a long name. CVE-2016-1234. Impact This vulnerability may allow a...
K04600292: Apache vulnerability CVE-2017-9789
Security Advisory Description When under stress, closing many connections, the HTTP/2 handling code in Apache httpd 2.4.26 would sometimes access memory after it has been freed, resulting in potentially erratic behavior. CVE-2017-9789 Impact There is no impact; F5 products are not affected by thi...
K82747025: GraphicsMagick vulnerability CVE-2016-5118
Security Advisory Description The OpenBlob function in blob.c in GraphicsMagick before 1.3.24 and ImageMagick allows remote attackers to execute arbitrary code via a | pipe character at the start of a filename. CVE-2016-5118 Impact A remote attacker may be able to execute arbitrary code on the...
K80285422: PHP vulnerabilities CVE-2015-4642, CVE-2015-4643, and CVE-2015-4644
Security Advisory Description CVE-2015-4642 The escapeshellarg function in ext/standard/exec.c in PHP before 5.4.42, 5.5.x before 5.5.26, and 5.6.x before 5.6.10 on Windows allows remote attackers to execute arbitrary OS commands via a crafted string to an application that accepts command-line...
K97810133: BIND vulnerability CVE-2020-8616
Security Advisory Description A malicious actor who intentionally exploits this lack of effective limitation on the number of fetches performed when processing referrals can, through the use of specially crafted referrals, cause a recursing server to issue a very large number of fetches in an...
K72708443: big3d agent vulnerability CVE-2021-22982
Security Advisory Description big3d does not securely handle and parse certain payloads resulting in a buffer overflow. CVE-2021-22982 Impact An attacker may trigger a buffer overflow to cause the big3d agent to stop responding, which generates a core file. Security Advisory Status F5 Product...
K94110161: Red Hat shell command injection flaw vulnerabilities CVE-2016-4444, CVE-2016-4445, CVE-2016-4446, and CVE-2016-4989
Security Advisory Description CVE-2016-4444 The allowexecmod plugin for setroubleshoot before 3.2.23 allows local users to execute arbitrary commands by triggering an execmod SELinux denial with a crafted binary filename, related to the commands.getstatusoutput function. CVE-2016-4445 The...
K23605974: OpenSSL vulnerability CVE-2022-2097
Security Advisory Description AES OCB mode for 32-bit x86 platforms using the AES-NI assembly optimised implementation will not encrypt the entirety of the data under some circumstances. This could reveal sixteen bytes of data that was preexisting in the memory that wasn't written. In the special...
K63176101: Linux kernel vulnerability CVE-2019-17055
Security Advisory Description basesockcreate in drivers/isdn/mISDN/socket.c in the AFISDN network module in the Linux kernel through 5.3.2 does not enforce CAPNETRAW, which means that unprivileged users can create a raw socket, aka CID-b91ee4aa2a21. CVE-2019-17055 Impact There is no impact; F5...
K25238311: Microsoft Remote Desktop Services Remote Code Execution vulnerability CVE-2019-0708
Security Advisory Description A remote code execution vulnerability exists in Remote Desktop Services formerly known as Terminal Services when an unauthenticated attacker connects to the target system using RDP and sends specially crafted requests, aka 'Remote Desktop Services Remote Code Executi...
K11447758: TMM vulnerability CVE-2019-6669
Security Advisory Description Undisclosed traffic flow may cause the Traffic Management Microkernel TMM to restart under some circumstances. CVE-2019-6669 Impact A remote attacker may be able to cause the Traffic Management Microkernel TMM to restart. This issue occurs on multi-blade chassis,...
K14634: SSL/TLS BREACH vulnerability CVE-2013-3587
Security Advisory Description The BREACH vulnerability allows attackers to discover secrets wrapped in HTTP compression inside of SSL. By injecting plaintext into an HTTPS request, an attacker can learn information about the corresponding HTTPS response by measuring its size. This action relies o...
K50455702: jQuery vulnerabilities CVE-2021-41182, CVE-2021-41183, and CVE-2021-41184
Security Advisory Description CVE-2021-41182 jQuery-UI is the official jQuery user interface library. Prior to version 1.13.0, accepting the value of the altField option of the Datepicker widget from untrusted sources may execute untrusted code. The issue is fixed in jQuery UI 1.13.0. Any string...
K44462254: Reflected Cross-Site Scripting (XSS) vulnerability CVE-2018-15312
Security Advisory Description A reflected Cross-Site Scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute JavaScript in the context of the current logged-in user. CVE-2018-15312 Impact A remote unauthenticated attacker...
K54184111: Kibana vulnerability CVE-2019-7609
Security Advisory Description Kibana versions before 5.6.15 and 6.6.1 contain an arbitrary code execution flaw in the Timelion visualizer. An attacker with access to the Timelion application could send a request that will attempt to execute javascript code. This could possibly lead to an attacker...