Lucene search
F5CVELIST:CVE-2022-23023HistoryJan 25, 2022 - 7:11 p.m.
CVE-2022-23023
2022-01-2519:11:28
CWE-400
f5
www.cve.org
4
big-ip version 16.1.x
big-ip version 15.1.x
big-ip version 14.1.x
big-iq version 8.x
big-iq version 7.x
increase in memory
authenticated user
EPSS
0.001
Percentile
35.0%
On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x, and BIG-IQ all versions of 8.x and 7.x, undisclosed requests by an authenticated iControl REST user can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CNA Affected
[
{
"product": "BIG-IP & BIG-IQ",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x, and BIG-IQ all versions of 8.x and 7.x"
}
]
}
]References
Related
cnvd
cnvd
F5 BIG-IP Resource Management Error Vulnerability (CNVD-2022-70626)
2022-01-21 00:00:00
nessus
nessus
F5 Networks BIG-IP : iControl REST vulnerability (K11742742)
2022-01-19 00:00:00
cve
cve
CVE-2022-23023
2022-01-25 20:15:09
nvd
nvd
CVE-2022-23023
2022-01-25 20:15:09
prion
prion
Design/Logic Flaw
2022-01-25 20:15:00
f5
f5
K11742742 : iControl REST vulnerability CVE-2022-23023
2022-01-19 00:00:00
K40084114 : Overview of F5 vulnerabilities (January 2022)
2022-01-19 00:00:00