Day: 12 diciembre, 2020

Apache Struts vulnerability CVE-2012-0391 Security Advisory Security Advisory Description The ExceptionDelegator component in Apache Struts before 2.2.3.1 interprets parameter values as OGNL ... More info: https://support.f5.com/csp/article/K20127031?utm_source=f5support&utm_medium=RSS

Apache Struts vulnerability CVE-2012-0392 Security Advisory Security Advisory Description The CookieInterceptor component in Apache Struts before 2.3.1.1 does not use the parameter-name whitelist, ... More info: https://support.f5.com/csp/article/K13434228?utm_source=f5support&utm_medium=RSS

BIND vulnerability CVE-2020-8624 Security Advisory Security Advisory Description In BIND 9.9.12 -> 9.9.13, 9.10.7 -> 9.10.8, 9.11.3 -> 9.11.21, 9.12.1 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.9 ... More info: https://support.f5.com/csp/article/K91090139?utm_source=f5support&utm_medium=RSS

OpenJDK vulnerability CVE-2020-14792 Security Advisory Security Advisory Description Vulnerability in the Java SE, Java SE Embedded product of Oracle Java SE (component: Hotspot). Supported ... More info: https://support.f5.com/csp/article/K33606035?utm_source=f5support&utm_medium=RSS

F5 TMM vulnerability CVE-2020-5950 Security Advisory Security Advisory Description An early syncookie leaks forwarding flows if the virtual server has Clustered Multiprocessing (CMP) disabled and ... More info: https://support.f5.com/csp/article/K05204103?utm_source=f5support&utm_medium=RSS

BIND vulnerability CVE-2020-8623 Security Advisory Security Advisory Description In BIND 9.10.0 -> 9.11.21, 9.12.0 -> 9.16.5, 9.17.0 -> 9.17.3, also affects 9.10.5-S1 -> 9.11.21-S1 of the BIND 9 ... More info: https://support.f5.com/csp/article/K82252291?utm_source=f5support&utm_medium=RSS

OpenSSL vulnerability CVE-2020-1968 Security Advisory Security Advisory Description The Raccoon attack exploits a flaw in the TLS specification which can lead to an attacker being able to compute ... More info: https://support.f5.com/csp/article/K92451315?utm_source=f5support&utm_medium=RSS

BIG-IP LTM vulnerability CVE-2020-5949 Security Advisory Security Advisory Description Certain traffic pattern sent to a virtual server configured with an FTP profile can cause the FTP channel to ... More info: https://support.f5.com/csp/article/K20984059?utm_source=f5support&utm_medium=RSS

TMM vulnerability CVE-2020-27713 Security Advisory Security Advisory Description In certain configurations, when a BIG-IP AFM HTTP security profile is applied to a virtual server and the BIG-IP ... More info: https://support.f5.com/csp/article/K37960100?utm_source=f5support&utm_medium=RSS

F5 TMUI XSS vulnerability CVE-2020-5948 Security Advisory Security Advisory Description Undisclosed endpoints in iControl REST allow for a reflected XSS attack, which could lead to a complete ... More info: https://support.f5.com/csp/article/K42696541?utm_source=f5support&utm_medium=RSS