exploitDog

GHSA-3r5p-5q8f-23jv

Опубликовано: 13 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 5.3

Описание

Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "Zip Bomb" attack.

Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "Zip Bomb" attack.

Ссылки

EPSS

Процентиль: 69%

0.00604

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-400

Связанные уязвимости

CVE-2017-6153

CVSS3: 5.3

nvd

больше 7 лет назад

Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "Zip Bomb" attack.

EPSS

Процентиль: 69%

0.00604

Низкий

5.3 Medium

CVSS3

CVE ID

Дефекты

CWE-400