Blog

Security Advisory Description In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is ... More info: https://my.f5.com/manage/s/article/K11315080?utm_source=f5support&utm_medium=RSS

Security Advisory Description A crafted request uri-path can cause mod_proxy to forward the request to an origin server chosen by the remote user. This issue affects Apache HTTP Server 2.4.48 and ... More info: https://my.f5.com/manage/s/article/K01552024?utm_source=f5support&utm_medium=RSS

Security Advisory Description A OS Command Injection vulnerability exists in Node.js versions <14.21.1, <16.18.1, <18.12.1, <19.0.1 due to an insufficient IsAllowedHost check that can easily be ... More info: https://my.f5.com/manage/s/article/K000133494?utm_source=f5support&utm_medium=RSS

Security Advisory Description Improper access control in some QATzip software maintained by Intel(R) before version 1.0.9 may allow an authenticated user to potentially enable escalation of ... More info: https://my.f5.com/manage/s/article/K000133491?utm_source=f5support&utm_medium=RSS

Security Advisory Description net/netfilter/nf_tables_api.c in the Linux kernel through 5.18.1 allows a local user (able to create user/net namespaces) to escalate privileges to root because an ... More info: https://my.f5.com/manage/s/article/K000133447?utm_source=f5support&utm_medium=RSS

Security Advisory Description CVE-2019-2766 Vulnerability in the Java SE, Java SE Embedded component of Oracle Java SE (subcomponent: Networking). Supported versions that are affected are Java SE: ... More info: https://my.f5.com/manage/s/article/K000133456?utm_source=f5support&utm_medium=RSS

Security Advisory Description Insufficient granularity of access control in out-of-band management in some Intel(R) Atom and Intel Xeon Scalable Processors may allow a privileged user to ... More info: https://my.f5.com/manage/s/article/K000133432?utm_source=f5support&utm_medium=RSS

Security Advisory Description When authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, ... More info: https://my.f5.com/manage/s/article/K50254952?utm_source=f5support&utm_medium=RSS

Security Advisory Description An issue was discovered in get_vdev_port_node_info in arch/sparc/kernel/mdesc.c in the Linux kernel through 5.1.6. There is an unchecked kstrdup_const of node_info-> ... More info: https://my.f5.com/manage/s/article/K60924046?utm_source=f5support&utm_medium=RSS

Security Advisory Description ** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been ... More info: https://my.f5.com/manage/s/article/K69334442?utm_source=f5support&utm_medium=RSS