Lucene search
China National Vulnerability DatabaseCNVD-2022-55168HistoryAug 03, 2022 - 12:00 a.m.
F5 BIG-IP LTM and APM NTLM out-of-bounds read vulnerability
2022-08-0300:00:00
China National Vulnerability Database
www.cnvd.org.cn
9
f5 big-ip
apm ntlm
out-of-bounds read
virtual server
buffer over-reads
system memory
security vulnerability
EPSS
0.001
Percentile
28.4%
F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, remote access policy management, etc. An out-of-bounds read vulnerability exists in F5 BIG-IP LTM and APM NTLM, when LTM health check probes or APM single sign-on are configured on a virtual server and NTLM challenge-response is used. undisclosed traffic could result in buffer over-reads, which could be exploited by an attacker to leak arbitrary system memory to the server.
Related
cve
cve
CVE-2022-33968
2022-08-04 18:15:09
f5
f5
K23465404 : BIG-IP LTM and APM NTLM vulnerability CVE-2022-33968
2022-08-03 00:00:00
K14649763 : Overview of F5 vulnerabilities (August 2022)
2022-08-03 00:00:00
nessus
nessus
F5 Networks BIG-IP : BIG-IP LTM and APM NTLM vulnerability (K23465404)
2022-08-03 00:00:00
prion
prion
Code injection
2022-08-04 18:15:00
cvelist
cvelist
CVE-2022-33968 BIG-IP LTM and APM NTLM vulnerability CVE-2022-33968
2022-08-04 17:47:03
nvd
nvd
CVE-2022-33968
2022-08-04 18:15:09