What is the severity of F5-K000139682?

The severity of F5-K000139682 is high due to its potential for serious data disclosure.

How do I fix F5-K000139682?

You can fix F5-K000139682 by applying the available security patches and updates provided by F5 for the affected products.

Who is affected by F5-K000139682?

F5-K000139682 affects various versions of F5 BIG-IP Next, BIG-IP, BIG-IQ, and F5OS products.

What type of vulnerability is F5-K000139682?

F5-K000139682 is a Speculative Race Condition (SRC) vulnerability impacting modern CPU architectures.

Can F5-K000139682 be exploited remotely?

Yes, F5-K000139682 can be exploited by unauthenticated attackers which increases its risk level.

Vulnerability/
F5-K000139682

medium

5.7

CWE

362

20/5/2024

25/7/2024

F5-K000139682: Race Condition

First published: Mon May 20 2024(Updated: )

A Speculative Race Condition (SRC) vulnerability that impacts modern CPU architectures supporting speculative execution (related to Spectre V1) has been disclosed. An unauthenticated attacker can exploit this vulnerability to disclose arbitrary data from the CPU using race conditions to access the speculative executable code paths.

Affected Software	Affected Version	How to fix
F5 BIG-IP Next (LTM)	>=20.0.1<=20.1.0
F5 BIG-IP Next Central Manager	>=20.0.1<=20.2.0
F5 BIG-IP and BIG-IQ Centralized Management	>=17.1.0<=17.1.1
F5 BIG-IP and BIG-IQ Centralized Management	>=16.1.0<=16.1.4
F5 BIG-IP and BIG-IQ Centralized Management	>=15.1.0<=15.1.10
F5 BIG-IP and BIG-IQ Centralized Management	>=8.1.0<=8.3.0
F5 F5OS-A	=1.7.0>=1.5.1<=1.5.2
F5 F5OS-C	>=1.6.0<=1.6.2
F5 Traffix Systems Signaling Delivery Controller	=5.2

Never miss a vulnerability like this again

Reference Links

https://my.f5.com/manage/s/article/K000139682

Frequently Asked Questions

What is the severity of F5-K000139682?
The severity of F5-K000139682 is high due to its potential for serious data disclosure.
How do I fix F5-K000139682?
You can fix F5-K000139682 by applying the available security patches and updates provided by F5 for the affected products.
Who is affected by F5-K000139682?
F5-K000139682 affects various versions of F5 BIG-IP Next, BIG-IP, BIG-IQ, and F5OS products.
What type of vulnerability is F5-K000139682?
F5-K000139682 is a Speculative Race Condition (SRC) vulnerability impacting modern CPU architectures.
Can F5-K000139682 be exploited remotely?
Yes, F5-K000139682 can be exploited by unauthenticated attackers which increases its risk level.

agent/severity
agent/last-modified-date
agent/weakness
agent/references
agent/event
agent/type
agent/description
agent/first-publish-date
agent/source
agent/tags
collector/f5-advisory
source/F5
alias/CVE-2024-2193
agent/software-canonical-lookup
agent/software-canonical-lookup-request
agent/softwarecombine
vendor/f5
canonical/f5 big-ip next (ltm)
version/f5 big-ip next (ltm)/20.0.1
version/f5 big-ip next (ltm)/20.1.0
canonical/f5 big-ip next central manager
version/f5 big-ip next central manager/20.0.1
version/f5 big-ip next central manager/20.2.0
canonical/f5 big-ip and big-iq centralized management
version/f5 big-ip and big-iq centralized management/17.1.0
version/f5 big-ip and big-iq centralized management/17.1.1
version/f5 big-ip and big-iq centralized management/16.1.0
version/f5 big-ip and big-iq centralized management/16.1.4
version/f5 big-ip and big-iq centralized management/15.1.0
version/f5 big-ip and big-iq centralized management/15.1.10
version/f5 big-ip and big-iq centralized management/8.1.0
version/f5 big-ip and big-iq centralized management/8.3.0
canonical/f5 f5os-a
version/f5 f5os-a/1.7.0
version/f5 f5os-a/1.5.1
version/f5 f5os-a/1.5.2
canonical/f5 f5os-c
version/f5 f5os-c/1.6.0
version/f5 f5os-c/1.6.2
canonical/f5 traffix systems signaling delivery controller
version/f5 traffix systems signaling delivery controller/5.2