Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2023-22302

Published: 01/02/2023 Updated: 07/11/2023
CVSS v3 Base Score: 5.9 | Impact Score: 3.6 | Exploitability Score: 2.2
VMScore: 0
Subscribe to F5

Vulnerability Summary

In BIG-IP versions 17.0.x prior to 17.0.0.2, and 16.1.x beginning in 16.1.2.2 to prior to 16.1.3.3, when an HTTP profile is configured on a virtual server and conditions beyond the attacker’s control exist on the target pool member, undisclosed requests sent to the BIG-IP system can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

f5 big-ip advanced firewall manager

f5 big-ip access policy manager

f5 big-ip policy enforcement manager

f5 big-ip local traffic manager

f5 big-ip link controller

f5 big-ip fraud protection service

f5 big-ip domain name system

f5 big-ip ddos hybrid defender

f5 big-ip application security manager

f5 big-ip analytics

f5 big-ip application acceleration manager

f5 big-ip ssl orchestrator

References

CWE-772https://my.f5.com/manage/s/article/K58550078https://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook