Описание
On BIG-IP DNS and GTM version 13.1.x before 13.1.0.4, and all versions of 12.1.x and 11.6.x, big3d does not securely handle and parse certain payloads resulting in a buffer overflow. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 12.1.0 (включая) до 12.1.5 (включая)Версия от 13.1.0 (включая) до 13.1.0.4 (исключая)Версия от 11.6.1 (включая) до 11.6.5 (включая)
Одно из
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*
EPSS
Процентиль: 62%
0.00434
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-120
Связанные уязвимости
github
больше 3 лет назад
On BIG-IP DNS and GTM version 13.1.x before 13.1.0.4, and all versions of 12.1.x and 11.6.x, big3d does not securely handle and parse certain payloads resulting in a buffer overflow. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.
EPSS
Процентиль: 62%
0.00434
Низкий
7.2 High
CVSS3
6.5 Medium
CVSS2
Дефекты
CWE-120