Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, and all versions of 13.1.x, 12.1.x and 11.6.x, when BIG-IP APM performs Online Certificate Status Protocol (OCSP) verification of a certificate that contains Authority Information Access (AIA), undisclosed requests may cause an increase in memory use. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
CVSS Information
N/A
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Vulnerability Title
F5 BIG-IP APM资源管理错误漏洞
Vulnerability Description
F5 BIG-IP APM是美国F5公司的一套访问和安全解决方案。该产品提供统一访问关键业务应用和网络的功能。 F5 BIG-IP APM存在安全漏洞。该漏洞的存在是由于对包含授权信息访问 (AIA) 的证书的在线证书状态协议 (OCSP) 验证中存在内存泄漏。远程攻击者可以发送特制的 OCSP AIA 请求并在目标系统上造成拒绝服务条件。
CVSS Information
N/A
Vulnerability Type
N/A