20 octubre, 2022

K04712583: Linux kernel vulnerability CVE-2021-40490

Linux kernel vulnerability CVE-2021-40490 Security Advisory Security Advisory Description A race condition was discovered in ext4_write_inline_data_end in fs/ext4/inline.c in the ext4 subsystem in ... More info: https://support.f5.com/csp/article/K04712583?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K24823443: Apache Commons Text vulnerability CVE-2022-42889

Apache Commons Text vulnerability CVE-2022-42889 Security Advisory Security Advisory Description Apache Commons Text performs variable interpolation, allowing properties to be dynamically ... More info: https://support.f5.com/csp/article/K24823443?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K27155546: BIND vulnerability CVE-2022-38177

BIND vulnerability CVE-2022-38177 Security Advisory Security Advisory Description By spoofing the target resolver with responses that have a malformed ECDSA signature, an attacker can trigger a ... More info: https://support.f5.com/csp/article/K27155546?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K81926432: NGINX ngx_http_mp4_module vulnerability CVE-2022-41741

NGINX ngx_http_mp4_module vulnerability CVE-2022-41741 Security Advisory Security Advisory Description NGINX Open Source before versions 1.23.2 and 1.22.1, NGINX Open Source Subscription before ... More info: https://support.f5.com/csp/article/K81926432?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K22505850: BIG-IP and BIG-IQ iControl REST vulnerability CVE-2022-41770

BIG-IP and BIG-IQ iControl REST vulnerability CVE-2022-41770 Security Advisory Security Advisory Description An authenticated iControl REST user can cause an increase in memory resource ... More info: https://support.f5.com/csp/article/K22505850?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K70569537: BIG-IP DNS Express vulnerability CVE-2022-41787

BIG-IP DNS Express vulnerability CVE-2022-41787 Security Advisory Security Advisory Description When the DNS profile is configured on a virtual server with DNS Express enabled, undisclosed DNS ... More info: https://support.f5.com/csp/article/K70569537?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K52494562: BIG-IP software SYN cookies vulnerability CVE-2022-36795

BIG-IP software SYN cookies vulnerability CVE-2022-36795 Security Advisory Security Advisory Description When an LTM TCP profile configured on a virtual server has the Auto Receive Window option ... More info: https://support.f5.com/csp/article/K52494562?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K30425568: Overview of F5 vulnerabilities (October 2022)

Overview of F5 vulnerabilities (October 2022) Security Advisory Security Advisory Description On October 19, 2022, F5 announced the following security issues. This document is intended to serve as ... More info: https://support.f5.com/csp/article/K30425568?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K81701735: F5OS CLI vulnerability CVE-2022-41780

F5OS CLI vulnerability CVE-2022-41780 Security Advisory Security Advisory Description A directory traversal vulnerability exists in an undisclosed location of the F5OS CLI that allows an attacker ... More info: https://support.f5.com/csp/article/K81701735?utm_source=f5support&utm_medium=RSS

20 octubre, 2022

K02694732: BIG-IP Advanced WAF and ASM bd vulnerability CVE-2022-41691

BIG-IP Advanced WAF and ASM bd vulnerability CVE-2022-41691 Security Advisory Security Advisory Description When an F5 BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, ... More info: https://support.f5.com/csp/article/K02694732?utm_source=f5support&utm_medium=RSS