Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

github логотип

GHSA-7qw3-c2vm-fjhq

Опубликовано: 05 фев. 2025
Источник: github
Github: Не прошло ревью
CVSS4: 8.7
CVSS3: 7.5

Описание

When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is configured on a virtual server or firewall rule or policy, undisclosed traffic can cause an increase in CPU resource utilization.  

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is configured on a virtual server or firewall rule or policy, undisclosed traffic can cause an increase in CPU resource utilization.  

Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Ссылки

EPSS

Процентиль: 56%
0.00341
Низкий

8.7 High

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2025-24312

Дефекты

CWE-770

Связанные уязвимости

nvd логотип

CVE-2025-24312

CVSS3: 7.5
nvd
около 1 года назад

When BIG-IP AFM is provisioned with IPS module enabled and protocol inspection profile is configured on a virtual server or firewall rule or policy, undisclosed traffic can cause an increase in CPU resource utilization.   Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

fstec логотип

BDU:2025-05331

CVSS3: 7.5
fstec
около 1 года назад

Уязвимость модуля IPS программных обеспечений сетевой безопасности BIG-IP Next CNF (Cloud-Native Functions) и BIG-IP AFM (Advanced Firewall Manager), позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 56%
0.00341
Низкий

8.7 High

CVSS4

7.5 High

CVSS3

CVE ID

CVE-2025-24312

Дефекты

CWE-770