Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
4.3
CVSSv2

CVE-2016-7468

Published: 23/03/2017 Updated: 06/06/2019
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 383
Vector: AV:N/AC:M/Au:N/C:N/I:N/A:P
Subscribe to Big-ip Local Traffic Manager

Vulnerability Summary

An unauthenticated remote attacker may be able to disrupt services on F5 BIG-IP 11.4.1 - 11.5.4 devices with maliciously crafted network traffic. This vulnerability affects virtual servers associated with TCP profiles when the BIG-IP system's tm.tcpprogressive db variable value is set to non-default setting "enabled". The default value for the tm.tcpprogressive db variable is "negotiate". An attacker may be able to disrupt traffic or cause the BIG-IP system to fail over to another device in the device group.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

f5 big-ip local traffic manager 11.5.0

f5 big-ip local traffic manager 11.5.1

f5 big-ip local traffic manager 11.5.2

f5 big-ip local traffic manager 11.5.4

f5 big-ip local traffic manager 11.4.0

f5 big-ip local traffic manager 11.4.1

f5 big-ip local traffic manager 11.5.3

f5 big-ip application acceleration manager 11.5.0

f5 big-ip application acceleration manager 11.5.1

f5 big-ip application acceleration manager 11.5.2

f5 big-ip application acceleration manager 11.5.3

f5 big-ip application acceleration manager 11.4.0

f5 big-ip application acceleration manager 11.4.1

f5 big-ip application acceleration manager 11.5.4

f5 big-ip advanced firewall manager 11.5.0

f5 big-ip advanced firewall manager 11.5.1

f5 big-ip advanced firewall manager 11.5.2

f5 big-ip advanced firewall manager 11.5.3

f5 big-ip advanced firewall manager 11.4.0

f5 big-ip advanced firewall manager 11.4.1

f5 big-ip advanced firewall manager 11.5.4

f5 big-ip analytics 11.5.0

f5 big-ip analytics 11.5.1

f5 big-ip analytics 11.5.2

f5 big-ip analytics 11.5.3

f5 big-ip analytics 11.5.4

f5 big-ip analytics 11.4.0

f5 big-ip analytics 11.4.1

f5 big-ip access policy manager 11.5.1

f5 big-ip access policy manager 11.5.2

f5 big-ip access policy manager 11.5.3

f5 big-ip access policy manager 11.5.4

f5 big-ip access policy manager 11.4.1

f5 big-ip access policy manager 11.5.0

f5 big-ip access policy manager 11.4.0

f5 big-ip application security manager 11.5.1

f5 big-ip application security manager 11.5.2

f5 big-ip application security manager 11.5.3

f5 big-ip application security manager 11.5.4

f5 big-ip application security manager 11.4.1

f5 big-ip application security manager 11.5.0

f5 big-ip application security manager 11.4.0

f5 big-ip global traffic manager 11.5.1

f5 big-ip global traffic manager 11.5.2

f5 big-ip global traffic manager 11.5.3

f5 big-ip global traffic manager 11.5.4

f5 big-ip global traffic manager 11.4.1

f5 big-ip global traffic manager 11.5.0

f5 big-ip global traffic manager 11.4.0

f5 big-ip link controller 11.5.2

f5 big-ip link controller 11.5.3

f5 big-ip link controller 11.5.4

f5 big-ip link controller 11.5.0

f5 big-ip link controller 11.5.1

f5 big-ip link controller 11.4.0

f5 big-ip link controller 11.4.1

f5 big-ip policy enforcement manager 11.5.2

f5 big-ip policy enforcement manager 11.5.3

f5 big-ip policy enforcement manager 11.5.4

f5 big-ip policy enforcement manager 11.5.1

f5 big-ip policy enforcement manager 11.5.0

f5 big-ip policy enforcement manager 11.4.0

f5 big-ip policy enforcement manager 11.4.1

f5 big-ip protocol security module 11.4.0

f5 big-ip protocol security module 11.4.1

References

CWE-284https://support.f5.com/csp/article/K13053402http://www.securityfocus.com/bid/97119http://www.securitytracker.com/id/1038121https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975CVE-2024-2961CVE-2024-20380XML injectionHTML injectionCVE-2024-29204CVE-2023-51795memory leakCVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook