Security Advisory Description Undisclosed requests to BIG-IP iControl REST can lead to an information leak of user account names. (CVE-2024-41723) Impact This vulnerability allows for a remote authent ...
Continue Reading
August 14, 2024
Security Advisory Description When a TCP profile with Multipath TCP enabled (MPTCP) is configured on a virtual server, undisclosed traffic along with conditions beyond the attacker's control can ...
Continue Reading
August 14, 2024
Security Advisory Description When a stateless virtual server is configured on a BIG-IP system with a High-Speed Bridge (HSB), undisclosed requests can cause virtual servers to stop processing client ...
Continue Reading
August 14, 2024
Security Advisory Description In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition (VEs) using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in me ...
Continue Reading
August 14, 2024
Security Advisory Description NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module, which might allow an attacker to over-read NGINX worker memory resulting in its terminat ...
Continue Reading
August 14, 2024
Security Advisory Description The BIG-IP Next Central Manager user session refresh token does not expire when a user logs out. (CVE-2024-39809) Impact An attacker with access to obtain a user's s ...
Continue Reading
August 14, 2024
Security Advisory Description BIG-IP Next Central Manager may allow an attacker to lock out an account that has never been logged in. (CVE-2024-37028) Impact An unauthenticated attacker can exploit th ...
Continue Reading
August 14, 2024
Security Advisory Description When NGINX Plus is configured to use the MQTT filter module, undisclosed requests can cause an increase in memory resource utilization. (CVE-2024-39792) Impact System per ...
Continue Reading
August 14, 2024
Back to Main
