Lucene search
F5F5:K34511555HistoryAug 03, 2022 - 12:00 a.m.
K34511555 : BIG-IP and BIG-IQ AWS vulnerability CVE-2022-34844
2022-08-0300:00:00
my.f5.com
25
dpdk
ena
big-ip
big-iq
aws
tmm
cve-2022-34844
dos
Security Advisory Description
When the Data Plane Development Kit (DPDK)/Elastic Network Adapter (ENA) driver is used with BIG-IP or BIG-IQ on Amazon Web Services (AWS) systems, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Successful exploitation relies on conditions outside of the attacker’s control. (CVE-2022-34844)
Impact
Traffic is disrupted while the TMM process restarts. This vulnerability allows a remote unauthenticated attacker to cause a denial-of-service (DoS) on the BIG-IP and BIG-IQ systems. There is no control plane exposure; this is a data plane issue only. This issue does not affect any other hardware, virtual platforms, or cloud providers, as the affected driver is specific to AWS.
Related
nessus
nessus
F5 Networks BIG-IP : BIG-IP and BIG-IQ AWS vulnerability (K34511555)
2022-08-03 00:00:00
cvelist
cvelist
CVE-2022-34844 BIG-IP and BIG-IQ AWS vulnerability CVE-2022-34844
2022-08-04 17:47:44
prion
prion
Input validation
2022-08-04 18:15:00
cnvd
cnvd
F5 BIG-IP and BIG-IQ AWS Input Validation Error Vulnerability
2022-08-03 00:00:00
nvd
nvd
CVE-2022-34844
2022-08-04 18:15:10
cve
cve
CVE-2022-34844
2022-08-04 18:15:10
f5
f5
K14649763 : Overview of F5 vulnerabilities (August 2022)
2022-08-03 00:00:00