Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
f5F5F5:K000137270
HistoryFeb 14, 2024 - 12:00 a.m.

K000137270 : BIG-IP Advanced WAF and BIG-IP ASM and vulnerability CVE-2024-21789

2024-02-1400:00:00
my.f5.com
16
big-ip
waf
asm
vulnerability
resource degradation
memory utilization
denial of service
remote attacker
data plane issue

AI Score

7.3

Confidence

High

EPSS

0

Percentile

9.0%

JSON

Security Advisory Description

When a BIG-IP Advanced WAF/ASM security policy is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. (CVE-2024-21789)

Impact

System performance can degrade until the bd process is either forced to restart or is manually restarted. This vulnerability allows a remote unauthenticated attacker to cause a degradation of service that can lead to a denial-of-service (DoS) on the BIG-IP system. There is no control plane exposure; this is a data plane issue only.

Related

nvd 1
prion 1
cve 1
cvelist 1
vulnrichment 1
nessus 1
f5 1
nvd
nvd
CVE-2024-21789
2024-02-14 17:15:12
prion
prion
Code injection
2024-02-14 17:15:00
cve
cve
CVE-2024-21789
2024-02-14 17:15:12
cvelist
cvelist
CVE-2024-21789 BIG-IP ASM and Advanced WAF vulnerability
2024-02-14 16:30:24
vulnrichment
vulnrichment
CVE-2024-21789 BIG-IP ASM and Advanced WAF vulnerability
2024-02-14 16:30:24
nessus
nessus
F5 Networks BIG-IP : BIG-IP Advanced WAF and BIG-IP ASM and vulnerability (K000137270)
2024-02-14 00:00:00
f5
f5
K000138353 : Quarterly Security Notification (February 2024)
2024-02-14 00:00:00

AI Score

7.3

Confidence

High

EPSS

0

Percentile

9.0%

JSON
Related for F5:K000137270
nvd1prion1cve1cvelist1vulnrichment1nessus1f51