Security Advisory Description When a BIG-IP PEM classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. This ...
Continue Reading
February 14, 2024
Security Advisory Description An SQL injection vulnerability exists in an undisclosed page of the BIG-IP Configuration utility. (CVE-2024-23603) Impact An authenticated attacker can exploit this vulne ...
Continue Reading
February 14, 2024
Security Advisory Description When HTTP Profile Cookie encryption is enabled, duplicate HTTP cookies may be passed on to back-end servers. This issue occurs when the following condition is met: The v ...
Continue Reading
February 14, 2024
Security Advisory Description A vulnerability exists in BIG-IP Next CNF systems that may allow access to undisclosed sensitive files. (CVE-2024-23306) Impact An authenticated attacker may be able to m ...
Continue Reading
February 14, 2024
Security Advisory Description When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. (CVE-2024-24989) Note: The ...
Continue Reading
February 14, 2024
Security Advisory Description BIG-IP or BIG-IQ Resource Administrators and Certificate Managers who have access to the secure copy (scp) utility but do not have access to Advanced Shell (bash) can exe ...
Continue Reading
February 14, 2024
Security Advisory Description When NGINX Plus or NGINX OSS are configured to use the HTTP/3 QUIC module, undisclosed requests can cause NGINX worker processes to terminate. (CVE-2024-24990) Note: The ...
Continue Reading
February 14, 2024
Security Advisory Description A directory traversal vulnerability exists in the F5OS QKView utility that allows an authenticated attacker to read files outside the QKView directory. (CVE-2024-23607) I ...
Continue Reading
February 14, 2024
Back to Main
