Security Advisory Description A OS Command Injection vulnerability exists in Node.js versions <14.21.1, <16.18.1, <18.12.1, <19.0.1 due to an insufficient IsAllowedHost check that can easily be ...
More info:
https://my.f5.com/manage/s/article/K000133494?utm_source=f5support&utm_medium=RSS
Security Advisory Description Improper access control in some QATzip software maintained by Intel(R) before version 1.0.9 may allow an authenticated user to potentially enable escalation of ...
More info:
https://my.f5.com/manage/s/article/K000133491?utm_source=f5support&utm_medium=RSS
Security Advisory Description net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an ...
More info:
https://my.f5.com/manage/s/article/K000133447?utm_source=f5support&utm_medium=RSS
Security Advisory Description CVE-2019-2766 Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: ...
More info:
https://my.f5.com/manage/s/article/K000133456?utm_source=f5support&utm_medium=RSS
Security Advisory Description Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to ...
More info:
https://my.f5.com/manage/s/article/K000133432?utm_source=f5support&utm_medium=RSS
Security Advisory Description When authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, ...
More info:
https://my.f5.com/manage/s/article/K50254952?utm_source=f5support&utm_medium=RSS
Security Advisory Description An issue was discovered in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup_const of node_info-> ...
More info:
https://my.f5.com/manage/s/article/K60924046?utm_source=f5support&utm_medium=RSS
Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been ...
More info:
https://my.f5.com/manage/s/article/K69334442?utm_source=f5support&utm_medium=RSS
Security Advisory Description The parse_encoding function in type1/t1load.c in FreeType before 2.5.3 allows remote attackers to cause a denial of service (infinite loop) via a "broken number-with- ...
More info:
https://my.f5.com/manage/s/article/K72372334?utm_source=f5support&utm_medium=RSS
Security Advisory Description The net/http package in Go through 1.6 does not attempt to address RFC 3875 section 4.1.18 namespace conflicts and therefore does not protect CGI applications from ...
More info:
https://my.f5.com/manage/s/article/K92930514?utm_source=f5support&utm_medium=RSS
