Описание
On version 16.0.x before 16.0.1.2, when a BIG-IP ASM and DataSafe profile are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Ссылки
- MitigationVendor Advisory
- MitigationVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия от 16.0.0 (включая) до 16.0.1 (включая)Версия от 16.0.0 (включая) до 16.0.1 (включая)Версия от 16.0.0 (включая) до 16.0.1 (включая)
Одно из
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_datasafe:*:*:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00608
Низкий
7.5 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-20
CWE-20
Связанные уязвимости
github
больше 3 лет назад
On version 16.0.x before 16.0.1.2, when a BIG-IP ASM and DataSafe profile are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
EPSS
Процентиль: 69%
0.00608
Низкий
7.5 High
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-20
CWE-20