Blog

libcurl vulnerability CVE-2016-8618 Security Advisory Security Advisory Description The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free ... More info: https://support.f5.com/csp/article/K10196624?utm_source=f5support&utm_medium=RSS

libcurl vulnerability CVE-2016-8618 Security Advisory Security Advisory Description The libcurl API function called `curl_maprintf()` before version 7.51.0 can be tricked into doing a double-free ... More info: https://support.f5.com/csp/article/K10196624?utm_source=f5support&utm_medium=RSS

Apache HTTPD vulnerability CVE-2020-1927 Security Advisory Security Advisory Description In Apache HTTP Server 2.4.0 to 2.4.41, redirects configured with mod_rewrite that were intended to be self- ... More info: https://support.f5.com/csp/article/K23153696?utm_source=f5support&utm_medium=RSS

BIG-IP Server SSL vulnerability CVE-2020-5913 Security Advisory Security Advisory Description The BIG-IP Server SSL profile ignores revoked certificates, even when a valid CRL is present. This ... More info: https://support.f5.com/csp/article/K72752002?utm_source=f5support&utm_medium=RSS

BIG-IP ASM Configuration utility vulnerability CVE-2020-5927 Security Advisory Security Advisory Description BIG-IP ASM Configuration utility stored cross-site scripting. (CVE-2020-5927) Impact An ... More info: https://support.f5.com/csp/article/K55873574?utm_source=f5support&utm_medium=RSS

BIG-IP APM vulnerability CVE-2020-5919 Security Advisory Security Advisory Description Rendering of certain session variables by BIG-IP APM UI-based agents in an access profile configured with ... More info: https://support.f5.com/csp/article/K94563369?utm_source=f5support&utm_medium=RSS

iControl REST CSRF vulnerability CVE-2020-5922 Security Advisory Security Advisory Description iControl REST does not implement cross-site request forgery (CSRF) protections for users applying ... More info: https://support.f5.com/csp/article/K20606443?utm_source=f5support&utm_medium=RSS

BIG-IP VIPRION MCPD vulnerability CVE-2020-5921 Security Advisory Security Advisory Description SYN flood causes a large number of MCPD context messages destined to secondary blades consuming ... More info: https://support.f5.com/csp/article/K00103216?utm_source=f5support&utm_medium=RSS

TMM SCTP vulnerability CVE-2020-5918 Security Advisory Security Advisory Description The Traffic Management Microkernel (TMM) may stop responding when processing Stream Control Transmission ... More info: https://support.f5.com/csp/article/K26464312?utm_source=f5support&utm_medium=RSS

BIG-IP self IP vulnerability CVE-2020-5923 Security Advisory Security Advisory Description Self-IP port-lockdown bypass by way of IPv6 link-local addresses. (CVE-2020-5923) Impact Port lockdowns ... More info: https://support.f5.com/csp/article/K05975972?utm_source=f5support&utm_medium=RSS