CVE-2022-23028
Last modified
CVE-2022-23028 is a medium-severity vulnerability rated 5.3/10 on the CVSS scale. On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when global AFM SYN cookie protection (TCP Half Open flood vector) is activated in the AFM Device Dos or DOS profile, certain types of TCP connections will fail. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.. EPSS estimates a 0.89% chance of exploitation in the next 30 days.
Description
On BIG-IP AFM version 16.x before 16.1.0, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x, when global AFM SYN cookie protection (TCP Half Open flood vector) is activated in the AFM Device Dos or DOS profile, certain types of TCP connections will fail. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| F5 | Big-Ip Advanced Firewall Manager | >= 13.1.0, <= 13.1.4 |
| F5 | Big-Ip Advanced Firewall Manager | >= 14.1.0, <= 14.1.4 |
| F5 | Big-Ip Advanced Firewall Manager | >= 15.1.0, <= 15.1.4 |
References
- https://support.f5.com/csp/article/K16101409Mitigation, Vendor Advisory
- https://support.f5.com/csp/article/K16101409Mitigation, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-23028?
How severe is CVE-2022-23028?
How do I fix CVE-2022-23028?
Are you affected by CVE-2022-23028?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST