CVE-2022-35236
- EPSS 0.68%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:10:56
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when an HTTP2 profile is configured on a virtual server, undisclosed traffic can cause an increase in memory resource utilization. Note: Software versions wh...
CVE-2022-35240
- EPSS 0.68%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:10:57
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when the Message Routing (MR) Message Queuing Telemetry Transport (MQTT) profile is configured on a virtual server, undisclosed requests can cause an increas...
CVE-2022-35243
- EPSS 0.63%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:10:57
In BIG-IP Versions 16.1.x before 16.1.3, 15.1.x before 15.1.5.1, 14.1.x before 14.1.5, and all versions of 13.1.x, when running in Appliance mode, an authenticated user assigned the Administrator role may be able to bypass Appliance mode restrictions...
CVE-2022-35245
- EPSS 0.68%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:10:57
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5.1, when a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Not...
CVE-2022-35272
- EPSS 0.42%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:11:01
In BIG-IP Versions 17.0.x before 17.0.0.1 and 16.1.x before 16.1.3.1, when source-port preserve-strict is configured on an HTTP Message Routing Framework (MRF) virtual server, undisclosed traffic may cause the Traffic Management Microkernel (TMM) to ...
CVE-2022-35728
- EPSS 0.59%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:11:33
In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ version 8.x before 8.2.0 and all versions of 7.x, an authenticated user's iControl REST token ma...
CVE-2022-35735
- EPSS 0.78%
- Veröffentlicht 04.08.2022 18:15:10
- Zuletzt bearbeitet 21.11.2024 07:11:34
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, an authenticated attacker with Resource Administrator or Manager privileges can create or modify existing monitor objects in the Co...
CVE-2022-31473
- EPSS 1.77%
- Veröffentlicht 04.08.2022 18:15:09
- Zuletzt bearbeitet 21.11.2024 07:04:31
In BIG-IP Versions 16.1.x before 16.1.1 and 15.1.x before 15.1.4, when running in Appliance mode, an authenticated attacker may be able to bypass Appliance mode restrictions due to a directory traversal vulnerability in an undisclosed page within iAp...
CVE-2022-32455
- EPSS 0.45%
- Veröffentlicht 04.08.2022 18:15:09
- Zuletzt bearbeitet 21.11.2024 07:06:23
In BIG-IP Versions 16.1.x before 16.1.2.2, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5, and all versions of 13.1.x, when a BIG-IP LTM Client SSL profile is configured on a virtual server to perform client certificate authentication with session tick...
CVE-2022-33203
- EPSS 0.68%
- Veröffentlicht 04.08.2022 18:15:09
- Zuletzt bearbeitet 21.11.2024 07:07:42
In BIG-IP Versions 16.1.x before 16.1.3, 15.1.x before 15.1.6.1, and 14.1.x before 14.1.5, when a BIG-IP APM access policy with Service Connect agent is configured on a virtual server, undisclosed requests can cause an increase in memory resource uti...