Lucene search
K

6389 matches found

F5 Networks
F5 Networks
added 2025/11/21 3:20 p.m.10 views

K000157929: Podman vulnerability CVE-2022-2738

Security Advisory Description The version of podman as released for Red Hat Enterprise Linux 7 Extras via RHSA-2022:2190 advisory included an incorrect version of podman missing the fix for CVE-2020-8945, which was previously fixed via RHSA-2020:2117. This issue could possibly be used to crash or...

7.5CVSS7.9AI score0.00742EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/11/19 3:40 p.m.8 views

K000157901: Intel(R) PCIe Switch software vulnerability CVE-2025-24323

Security Advisory Description Improper access control in some firmware package and LED mode toggle tool for some IntelR PCIe Switch software before version MR41.0b1 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2025-24323 Impact There is no impact...

7CVSS6.9AI score0.00137EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/11/14 10:53 p.m.12 views

K000157862: Apache Tomcat vulnerability CVE-2025-55754

Security Advisory Description Improper Neutralization of Escape, Meta, or Control Sequences vulnerability in Apache Tomcat. Tomcat did not escape ANSI escape sequences in log messages. If Tomcat was running in a console on a Windows operating system, and the console supported ANSI escape sequence...

9.6CVSS8.3AI score0.09917EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/11/14 1:10 a.m.8 views

K000157847: Apache Tomcat vulnerability CVE-2025-61795

Security Advisory Description Improper Resource Shutdown or Release vulnerability in Apache Tomcat. If an error occurred including exceeding limits during the processing of a multipart upload, temporary copies of the uploaded parts written to disc were not cleaned up immediately but left for the...

5.3CVSS8.1AI score0.01139EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/11/14 1:2 a.m.9 views

K000157848: Oracle Java vulnerability CVE-2017-10109

Security Advisory Description Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: Serialization. Supported versions that are affected are Java SE: 6u151, 7u141 and 8u131; Java SE Embedded: 8u131; JRockit: R28.3.14. Easily exploitable vulnerability...

5.3CVSS6.1AI score0.03114EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/11/14 12:54 a.m.22 views

K000157846: Apache Tomcat vulnerability CVE-2025-55752

Security Advisory Description Relative Path Traversal vulnerability in Apache Tomcat. The fix for bug 60013 introduced a regression where the rewritten URL was normalized before it was decoded. This introduced the possibility that, for rewrite rules that rewrite query parameters to the URL, an...

7.5CVSS9.4AI score0.66535EPSS
Exploits4Affected Software1
F5 Networks
F5 Networks
added 2025/11/13 8:41 p.m.6 views

K000157844: Jetty vulnerabilities CVE-2023-36478, CVE-2024-6763, CVE-2023-26049, CVE-2024-8184, and CVE-2023-41900

Security Advisory Description CVE-2023-36478 Eclipse Jetty provides a web server and servlet container. In versions 11.0.0 through 11.0.15, 10.0.0 through 10.0.15, and 9.0.0 through 9.4.52, an integer overflow in MetaDataBuilder.checkSize allows for HTTP/2 HPACK header values to exceed their size...

7.5CVSS7.4AI score0.03754EPSS
Exploits3
F5 Networks
F5 Networks
added 2025/11/13 5:15 p.m.9 views

K000157302: Apache Tomcat vulnerability CVE-2025-48989

Security Advisory Description Improper Resource Shutdown or Release vulnerability in Apache Tomcat made Tomcat vulnerable to the made you reset attack. This issue affects Apache Tomcat: from 11.0.0-M1 through 11.0.9, from 10.1.0-M1 through 10.1.43 and from 9.0.0.M1 through 9.0.107. Older, EOL...

7.5CVSS7.2AI score0.03389EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/11/13 4:54 p.m.6 views

K000157836: CUPS vulnerability CVE-2023-34241

Security Advisory Description OpenPrinting CUPS is a standards-based, open source printing system for Linux and other Unix-like operating systems. Starting in version 2.0.0 and prior to version 2.4.6, CUPS logs data of free memory to the logging service AFTER the connection has been closed, when ...

7.1CVSS7.5AI score0.01395EPSS
Exploits1
F5 Networks
F5 Networks
added 2025/11/12 1:6 a.m.9 views

K000157365: Moment vulnerability CVE-2022-31129

Security Advisory Description moment is a JavaScript date library for parsing, validating, manipulating, and formatting dates. Affected versions of moment were found to use an inefficient parsing algorithm. Specifically using string-to-date parsing in moment more specifically rfc2822 parsing, whi...

7.5CVSS6.5AI score0.04923EPSS
Exploits1
F5 Networks
F5 Networks
added 2025/11/10 2:53 a.m.9 views

K000157341: Linux kernel vulnerability CVE-2025-21887

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: ovl: fix UAF in ovldentryupdatereval by moving dput in ovllinkup The issue was caused by dputupper being called before ovldentryupdatereval, while upper-dflags was still accessed in ovldentryremote...

7.8CVSS5.5AI score0.00182EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/11/07 11:49 p.m.8 views

K000157334: BIND vulnerability CVE-2025-40778

Security Advisory Description Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an attacker to inject forged data into the cache. This issue affects BIND 9 versions 9.11.0 through 9.16.50, 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through...

8.6CVSS6.8AI score0.00509EPSS
Exploits1Affected Software2
F5 Networks
F5 Networks
added 2025/11/07 6:16 p.m.9 views

K000157317: BIND vulnerability CVE-2025-8677

Security Advisory Description Querying for records within a specially crafted zone containing certain malformed DNSKEY records can lead to CPU exhaustion. This issue affects BIND 9 versions 9.18.0 through 9.18.39, 9.20.0 through 9.20.13, 9.21.0 through 9.21.12, 9.18.11-S1 through 9.18.39-S1, and...

7.5CVSS6.4AI score0.1096EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
added 2025/11/07 5:0 p.m.9 views

K000157330: Intel 700 Series Ethernet vulnerability CVE-2025-25273

Security Advisory Description Insufficient control flow management in the Linux kernel-mode driver for some IntelR 700 Series Ethernet before version 2.28.5 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-25273 Impact There is no impact; F5...

8.8CVSS6.7AI score0.00119EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/11/07 3:32 p.m.8 views

K000157322: Linux kernel vulnerability CVE-2025-8941

Security Advisory Description A flaw was found in linux-pam. The pamnamespace module may improperly handle user-controlled paths, allowing local users to exploit symlink attacks and race conditions to elevate their privileges to root. This CVE provides a "complete" fix for CVE-2025-6020...

7.8CVSS7.5AI score0.00254EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/11/07 2:1 a.m.13 views

K000157321: Intel 700 Series Ethernet vulnerability CVE-2025-24486

Security Advisory Description Improper input validation in the Linux kernel-mode driver for some IntelR 700 Series Ethernet before version 2.28.5 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-24486 Impact There is no impact; F5 products a...

8.8CVSS6.7AI score0.00127EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/27 6:6 p.m.21 views

K000157145: Java vulnerabilities CVE-2025-53057, CVE-2025-61748, and CVE-2025-53066

Security Advisory Description CVE-2025-53057 Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Security. Supported versions that are affected are Oracle Java SE: 8u461, 8u461-perf, 11.0.28, 17.0.16, 21.0.8, 25; Orac...

7.5CVSS6.4AI score0.00633EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/24 8:51 p.m.8 views

K000157130: Linux kernel vulnerability CVE-2025-22004

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: net: atm: fix use after free in lecsend The -send operation frees skb so save the length before calling -send to avoid a use after free. CVE-2025-22004 Impact There is no impact; F5 products are not...

7.8CVSS5.6AI score0.00194EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/24 7:20 p.m.10 views

K000157129: GlibC vulnerability CVE-2025-8058

Security Advisory Description The regcomp function in the GNU C library version from 2.4 to 2.41 is subject to a double free if some previous allocation fails. It can be accomplished either by a malloc failure or by using an interposed malloc that injects random malloc failures. The double free c...

5.9CVSS6.5AI score0.00158EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/24 4:7 a.m.10 views

K000157121: Intel 800 Series ethernet driver vulnerabilities CVE-2025-22836, CVE-2025-22893, CVE-2025-24324

Security Advisory Description CVE-2025-22836 Integer overflow or wraparound in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-22893 Insufficient control...

8.8CVSS6.9AI score0.00119EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/24 2:15 a.m.12 views

K000157119: Linux kernel vulnerability CVE-2024-35855

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: mlxsw: spectrumacltcam: Fix possible use-after-free during activity update The rule activity update delayed work periodically traverses the list of configured rules and queries their activity from th...

7.8CVSS5.5AI score0.00247EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/23 8:51 p.m.13 views

K000157114: cPython vulnerability CVE-2025-4517

Security Advisory Description Allows arbitrary filesystem writes outside the extraction directory during extraction with filter="data". You are affected by this vulnerability if using the tarfile module to extract untrusted tar archives using TarFile.extractall or TarFile.extract using the filter...

9.4CVSS7.5AI score0.01184EPSS
Exploits11
F5 Networks
F5 Networks
added 2025/10/21 8:26 a.m.15 views

K000157074: Samba vulnerability CVE-2025-10230

Security Advisory Description The cve record for the cve id does not exist. CVE-2025-10230 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product Development has evaluated the currently supported releases for potential vulnerability, and...

10CVSS6.7AI score0.40121EPSS
Exploits2
F5 Networks
F5 Networks
added 2025/10/20 4:4 p.m.11 views

K000157067: ImageMagick vulnerability CVE-2025-57807

Security Advisory Description ImageMagick is free and open-source software used for editing and manipulating digital images. ImageMagick versions lower than 14.8.2 include insecure functions: SeekBlob, which permits advancing the stream offset beyond the current end without increasing capacity, a...

9.8CVSS6.4AI score0.00274EPSS
Exploits1
F5 Networks
F5 Networks
added 2025/10/15 7:8 p.m.12 views

K000156944: Intel vulnerability CVE-2025-20093

Security Advisory Description Improper check for unusual or exceptional conditions in the Linux kernel-mode driver for some IntelR 800 Series Ethernet before version 1.17.2 may allow an authenticated user to potentially enable escalation of privilege via local access. CVE-2025-20093 Impact This...

8.6CVSS5.8AI score0.00129EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 12:31 p.m.12 views

K000154696: F5 Security Incident

We want to share information with you about steps we’ve taken to resolve a security incident at F5 and our ongoing efforts to protect our customers. In August 2025, we learned a highly sophisticated nation-state threat actor maintained long-term, persistent access to, and downloaded files from,...

8.2AI score
Exploits0
F5 Networks
F5 Networks
added 2025/10/15 11:42 a.m.110 views

K000156572: Quarterly Security Notification (October 2025)

Security Advisory Description On October 15, 2025, F5 announced the following security issues. This document is intended to serve as an overview of these vulnerabilities and security exposures to help determine the impact to your F5 devices. You can find the details of each issue in the associate...

9.8CVSS5.9AI score0.02213EPSS
Exploits0
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.11 views

K44517780: BIG-IP iRules vulnerability CVE-2025-53474

Security Advisory Description When an iRule using an ILX::call command is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-53474 Impact Traffic is disrupted while the TMM process restarts. This vulnerability allows a remot...

8.7CVSS7.1AI score0.00327EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.8 views

K000150667: BIG-IP SSL Orchestrator vulnerability CVE-2025-41430

Security Advisory Description When BIG-IP SSL Orchestrator is enabled, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-41430 Impact Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote, unauthenticated attacker to caus...

8.7CVSS6.9AI score0.00327EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.10 views

K000152341: BIG-IP AFM DoS protection profile vulnerability CVE-2025-59478

Security Advisory Description When a BIG-IP AFM denial-of-service DoS protection profile is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-59478 Impact Traffic is disrupted while the TMM process restarts. This...

8.7CVSS6.9AI score0.00343EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.11 views

K000151368: BIG-IP SSL Orchestrator vulnerability CVE-2025-55036

Security Advisory Description When BIG-IP SSL Orchestrator explicit forward proxy is configured on a virtual server and the proxy connect feature is enabled, undisclosed traffic may cause memory corruption. CVE-2025-55036 Impact System performance can degrade until the Traffic Management...

8.7CVSS6.9AI score0.00324EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.9 views

K000156800: BIG-IP Configuration utility vulnerability CVE-2025-59483

Security Advisory Description An arbitrary file upload vulnerability exists in an undisclosed URL in the Configuration utility. CVE-2025-59483 Impact A highly privileged authenticated attacker may be able to exploit this vulnerability to upload arbitrary files. This is a control plane issue; ther...

8.5CVSS6.8AI score0.00348EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.13 views

K000148625: F5OS-A FIPS HSM vulnerability CVE-2025-53860

Security Advisory Description A vulnerability exists in F5OS-A software that allows a highly privileged authenticated attacker to access sensitive FIPS hardware security module HSM information on F5 rSeries systems. CVE-2025-53860 Impact A highly privileged authenticated attacker with access to t...

5.6CVSS6.6AI score0.00116EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.12 views

K000156691: BIG-IP TMM vulnerability CVE-2025-58096

Security Advisory Description When the database variable tm.tcpudptxchecksum is configured as non-default value Software-only on a BIG-IP system, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-58096 Impact Traffic is disrupted while the TMM process...

8.2CVSS6.8AI score0.00324EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.11 views

K000150010: BIG-IP AFM security exposure

Security Advisory Description After a reboot, the BIG-IP AFM ipsd process may unexpectedly fail to enforce the Intrusion Prevention System IPS signatures configured for protocol inspection profiles. This condition can persist for some time even though the system reports the protocol inspection...

6.8AI score
Exploits0
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.8 views

K000151475: BIG-IP PEM vulnerability CVE-2025-54479

Security Advisory Description When a classification profile is configured on a virtual server without an HTTP or HTTP/2 profile, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-54479 Impact Traffic is disrupted while the TMM process restarts. This...

8.7CVSS6.9AI score0.00327EPSS
Exploits0Affected Software3
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.17 views

K000139514: BIG-IP SSL/TLS vulnerability CVE-2025-60016

Security Advisory Description When Diffie-Hellman DH group Elliptic Curve Cryptography ECC Brainpool curves are configured in an SSL profile's Cipher Rule or Cipher Group, and that profile is applied to a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to...

8.7CVSS7AI score0.00414EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.7 views

K000156733: BIG-IP SSL/TLS vulnerability CVE-2025-61974

Security Advisory Description When a client SSL profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. CVE-2025-61974 Impact System performance can degrade until the Traffic Management Microkernel TMM process is either forced to resta...

8.7CVSS7.1AI score0.00429EPSS
Exploits0Affected Software15
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.10 views

K000154647: BIG-IP tmsh vulnerability CVE-2025-61958

Security Advisory Description A vulnerability exists in the iHealth utility of the TMOS Shell tmsh that may allow an authenticated attacker with at least a resource administrator role to bypass tmsh restrictions and gain access to the Advanced Shell bash. For BIG-IP systems running in Appliance...

8.7CVSS5.3AI score0.00367EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.11 views

K000151297: BIG-IP TMM vulnerability CVE-2025-58424

Security Advisory Description On BIG-IP systems, undisclosed traffic can cause data corruption and unauthorized data modification in protocols which do not have message integrity protection. CVE-2025-58424 Impact This vulnerability may allow a remote, unauthenticated attacker to inject malicious...

6.3CVSS5.7AI score0.00231EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.9 views

K000151658: BIG-IP HSB vulnerability CVE-2025-58153

Security Advisory Description Under undisclosed traffic conditions along with conditions beyond the attacker's control, hardware systems with a High-Speed Bridge HSB and an embedded Packet Velocity Acceleration ePVA chip may experience a lockup of the HSB. CVE-2025-58153 Impact Traffic is disrupt...

8.2CVSS5.5AI score0.00215EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:16 a.m.10 views

K000156602: BIG-IP APM vulnerability CVE-2025-54854

Security Advisory Description When a BIG-IP APM OAuth access profile Resource Server or Resource Client is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. CVE-2025-54854 Impact Traffic is disrupted while the apmd process restarts. This vulnerability...

8.7CVSS5.7AI score0.00324EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.12 views

K000151309: BIG-IP DTLS 1.2 vulnerability CVE-2025-61951

Security Advisory Description Undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. This issue may occur when a Datagram Transport Layer Security DTLS 1.2 virtual server is enabled with a Server SSL profile that is configured with a certificate, key, and the SSL Sign...

8.7CVSS6.9AI score0.00224EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.13 views

K000151902: BIG-IP SCP and SFTP vulnerability CVE-2025-53868

Security Advisory Description When running in Appliance mode, a highly privileged authenticated attacker with access to Secure Copy SCP protocol and SFTP may be able to bypass Appliance mode restrictions using undisclosed commands. CVE-2025-53868 Impact In Appliance mode, an authenticated attacke...

8.7CVSS5.9AI score0.00418EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.18 views

K000151596: BIG-IP TMM vulnerability CVE-2025-54805

Security Advisory Description When an iRule is configured on a virtual server via the declarative API, upon re-instantiation, the cleanup process can cause an increase in Traffic Management Microkernel TMM memory resource utilization. CVE-2025-54805 Impact System performance degradation can occur...

6.5CVSS5.8AI score0.00285EPSS
Exploits0Affected Software3
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.9 views

K000156741: BIG-IP APM vulnerability CVE-2025-53521

Security Advisory Description When a BIG-IP APM access policy is configured on a virtual server, specific malicious traffic can lead to Remote Code Execution RCE. CVE-2025-53521 Important : We have learned that this vulnerability has been exploited. If your BIG-IP APM system is running a vulnerab...

9.8CVSS6.3AI score0.02213EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.15 views

K000150752: BIG-IP HTTP/2 vulnerability CVE-2025-55669

Security Advisory Description When the BIG-IP Advanced WAF and ASM security policy and a server-side HTTP/2 profile are configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-55669 Impact Traffic is disrupted for new client...

8.7CVSS6.9AI score0.00358EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.11 views

K000156912: BIG-IP TMM vulnerability CVE-2025-61990

Security Advisory Description When using a multi-bladed platform with more than one active blade, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-61990 Impact Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote,...

8.7CVSS7.2AI score0.00324EPSS
Exploits0Affected Software15
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.11 views

K000151718: VELOS partition container network vulnerability CVE-2025-59778

Security Advisory Description When the Allowed IP Addresses feature is configured with All for the Port setting in the F5OS-C partition control plane, undisclosed traffic can cause multiple containers to terminate. This issue only affects the F5OS-C partitions; the F5OS-C controller layer is not...

7.7CVSS6.9AI score0.00312EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
added 2025/10/15 11:1 a.m.11 views

K000154614: BIG-IP Next (CNF, SPK, and Kubernetes) vulnerability CVE-2025-55670

Security Advisory Description On BIG-IP Next CNF, BIG-IP Next SPK, and BIG-IP Next for Kubernetes systems, repeated undisclosed API calls can cause the Traffic Management Microkernel TMM to terminate. CVE-2025-55670 Impact Traffic is disrupted while the TMM process restarts. This vulnerability...

7.1CVSS6.7AI score0.00285EPSS
Exploits0Affected Software3
Total number of security vulnerabilities6389