Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-33962

In BIG-IP Versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, certain iRules commands may allow an attacker to bypass the access control restrictions for a self IP address, regardless of the port lockdown settings. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Published

2022-08-04T18:15:09.917

Last Modified

2024-11-21T07:08:40.673

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 6.7 (MEDIUM)

Weaknesses
  • Type: Primary
    CWE-269
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application f5 big-ip_access_policy_manager ≤ 13.1.5 Yes
Application f5 big-ip_access_policy_manager < 14.1.5.1 Yes
Application f5 big-ip_access_policy_manager < 15.1.6.1 Yes
Application f5 big-ip_access_policy_manager < 16.1.3.1 Yes
Application f5 big-ip_access_policy_manager 17.0.0 Yes
Application f5 big-ip_advanced_firewall_manager ≤ 13.1.5 Yes
Application f5 big-ip_advanced_firewall_manager < 14.1.5.1 Yes
Application f5 big-ip_advanced_firewall_manager < 15.1.6.1 Yes
Application f5 big-ip_advanced_firewall_manager < 16.1.3.1 Yes
Application f5 big-ip_advanced_firewall_manager 17.0.0 Yes
Application f5 big-ip_analytics ≤ 13.1.5 Yes
Application f5 big-ip_analytics < 14.1.5.1 Yes
Application f5 big-ip_analytics < 15.1.6.1 Yes
Application f5 big-ip_analytics < 16.1.3.1 Yes
Application f5 big-ip_analytics 17.0.0 Yes
Application f5 big-ip_application_acceleration_manager ≤ 13.1.5 Yes
Application f5 big-ip_application_acceleration_manager < 14.1.5.1 Yes
Application f5 big-ip_application_acceleration_manager < 15.1.6.1 Yes
Application f5 big-ip_application_acceleration_manager < 16.1.3.1 Yes
Application f5 big-ip_application_acceleration_manager 17.0.0 Yes
Application f5 big-ip_application_security_manager ≤ 13.1.5 Yes
Application f5 big-ip_application_security_manager < 14.1.5.1 Yes
Application f5 big-ip_application_security_manager < 15.1.6.1 Yes
Application f5 big-ip_application_security_manager < 16.1.3.1 Yes
Application f5 big-ip_application_security_manager 17.0.0 Yes
Application f5 big-ip_domain_name_system ≤ 13.1.5 Yes
Application f5 big-ip_domain_name_system < 14.1.5.1 Yes
Application f5 big-ip_domain_name_system < 15.1.6.1 Yes
Application f5 big-ip_domain_name_system < 16.1.3.1 Yes
Application f5 big-ip_domain_name_system 17.0.0 Yes
Application f5 big-ip_fraud_protection_service ≤ 13.1.5 Yes
Application f5 big-ip_fraud_protection_service < 14.1.5.1 Yes
Application f5 big-ip_fraud_protection_service < 15.1.6.1 Yes
Application f5 big-ip_fraud_protection_service < 16.1.3.1 Yes
Application f5 big-ip_fraud_protection_service 17.0.0 Yes
Application f5 big-ip_global_traffic_manager ≤ 13.1.5 Yes
Application f5 big-ip_global_traffic_manager < 14.1.5.1 Yes
Application f5 big-ip_global_traffic_manager < 15.1.6.1 Yes
Application f5 big-ip_global_traffic_manager < 16.1.3.1 Yes
Application f5 big-ip_global_traffic_manager 17.0.0 Yes
Application f5 big-ip_link_controller ≤ 13.1.5 Yes
Application f5 big-ip_link_controller < 14.1.5.1 Yes
Application f5 big-ip_link_controller < 15.1.6.1 Yes
Application f5 big-ip_link_controller < 16.1.3.1 Yes
Application f5 big-ip_link_controller 17.0.0 Yes
Application f5 big-ip_local_traffic_manager ≤ 13.1.5 Yes
Application f5 big-ip_local_traffic_manager < 14.1.5.1 Yes
Application f5 big-ip_local_traffic_manager < 15.1.6.1 Yes
Application f5 big-ip_local_traffic_manager < 16.1.3.1 Yes
Application f5 big-ip_local_traffic_manager 17.0.0 Yes
Application f5 big-ip_policy_enforcement_manager ≤ 13.1.5 Yes
Application f5 big-ip_policy_enforcement_manager < 14.1.5.1 Yes
Application f5 big-ip_policy_enforcement_manager < 15.1.6.1 Yes
Application f5 big-ip_policy_enforcement_manager < 16.1.3.1 Yes
Application f5 big-ip_policy_enforcement_manager 17.0.0 Yes
References