Month: mayo 2022

BIG-IP APM RDP resource security exposure Security Advisory Security Advisory Description When BIG-IP APM Remote Desktop Protocol (RDP) is configured, users can bypass RDP resource redirection ... More info: https://support.f5.com/csp/article/K74302282?utm_source=f5support&utm_medium=RSS

BIG-IP FTP profile vulnerability CVE-2022-26130 Security Advisory Security Advisory Description When an Active mode-enabled FTP profile is configured on a virtual server, undisclosed traffic can ... More info: https://support.f5.com/csp/article/K82034427?utm_source=f5support&utm_medium=RSS

F5 ePVA vulnerability CVE-2022-28705 Security Advisory Security Advisory Description On platforms with an ePVA and the pva.fwdaccel BigDB variable enabled, undisclosed requests to a virtual server ... More info: https://support.f5.com/csp/article/K52340447?utm_source=f5support&utm_medium=RSS

BIG-IP Stream profile vulnerability CVE-2022-28701 Security Advisory Security Advisory Description When the stream profile is configured on a virtual server, undisclosed requests can cause an ... More info: https://support.f5.com/csp/article/K99123750?utm_source=f5support&utm_medium=RSS

BIG-IP ICAP profile vulnerability CVE-2022-27189 Security Advisory Security Advisory Description When an Internet Content Adaptation Protocol (ICAP) profile is configured on a virtual server, ... More info: https://support.f5.com/csp/article/K16187341?utm_source=f5support&utm_medium=RSS

BIG-IP TMUI vulnerability CVE-2022-27659 Security Advisory Security Advisory Description An authenticated attacker can modify or delete Dashboards created by other BIG-IP users in the Traffic ... More info: https://support.f5.com/csp/article/K41877405?utm_source=f5support&utm_medium=RSS

BIG-IP TMUI XSS vulnerability CVE-2022-28707 Security Advisory Security Advisory Description A stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP ... More info: https://support.f5.com/csp/article/K70300233?utm_source=f5support&utm_medium=RSS

BIG-IP SIP ALG profile vulnerability CVE-2022-26370 Security Advisory Security Advisory Description When a Session Initiation Protocol (SIP) message routing framework (MRF) application layer ... More info: https://support.f5.com/csp/article/K51539421?utm_source=f5support&utm_medium=RSS

Linux kernel vulnerability CVE-2021-4028 Security Advisory Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when ... More info: https://support.f5.com/csp/article/K37256400?utm_source=f5support&utm_medium=RSS

Expat vulnerability CVE-2021-46143 Security Advisory Security Advisory Description In doProlog in xmlparse.c in Expat (aka libexpat) before 2.4.3, an integer overflow exists for m_groupSize. (CVE- ... More info: https://support.f5.com/csp/article/K23231802?utm_source=f5support&utm_medium=RSS