Latest f5 traffix signaling delivery controller Vulnerabilities

CVE-2022-27880
On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Scripting (XSS) vulnerability exists in an undisclosed page of the Traffix SDC Configuration uti...
F5 Traffix Signaling Delivery Controller=5.1.0
F5 Traffix Signaling Delivery Controller=5.2.0
CVE-2022-27662
On F5 Traffix SDC 5.2.x versions prior to 5.2.2 and 5.1.x versions prior to 5.1.35, a stored Cross-Site Template Injection vulnerability exists in an undisclosed page of the Traffix SDC Configuration ...
F5 Traffix Signaling Delivery Controller=5.1.0
F5 Traffix Signaling Delivery Controller=5.2.0
CVE-2002-20001
The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-expo...
Balasys Dheater
SUSE Linux Enterprise Server=15
SUSE Linux Enterprise Server=11
SUSE Linux Enterprise Server=12
F5 BIG-IQ Centralized Management=7.1.0
F5 BIG-IQ Centralized Management>=8.0.0<=8.2.0
and 80 more
CVE-2020-5854
On BIG-IP 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.6.0-11.6.5.1, the tmm crashes under certain circumstances when using the connector profile if a specif...
F5 BIG-IP Access Policy Manager>=11.5.2<=11.6.5
F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.1
F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.2
F5 BIG-IP Access Policy Manager>=14.0.0<14.0.1.1
F5 BIG-IP Access Policy Manager>=14.1.0<14.1.2.1
F5 BIG-IP Access Policy Manager>=15.0.0<15.1.0
and 78 more
CVE-2018-14463
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2018-16229
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2018-14465
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2018-14880
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 85 more
CVE-2018-14882
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2018-14462
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2018-14469
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2018-14468
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 85 more
CVE-2018-14879
tcpdump. Multiple issues were addressed by updating to tcpdump version 4.9.3 and libpcap version 1.9.1
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/tcpdump<4.9.3-0ubuntu0.18.04.1
ubuntu/tcpdump<4.9.3-0ubuntu0.14.04.1+
ubuntu/tcpdump<4.9.3
and 15 more
CVE-2019-16714
In the Linux kernel before 5.2.14, rds6_inc_info_copy in net/rds/recv.c allows attackers to obtain sensitive information from kernel stack memory because tos and flags fields are not initialized.
ubuntu/linux<5.0.0-32.34
ubuntu/linux<5.3~
ubuntu/linux-aws<5.0.0-1019.21
ubuntu/linux-aws<5.3~
ubuntu/linux-aws-5.0<5.3~
ubuntu/linux-aws-hwe<5.3~
and 41 more
CVE-2019-13565
An issue was discovered in OpenLDAP 2.x before 2.4.48. When using SASL authentication and session encryption, and relying on the SASL security layers in slapd access controls, it is possible to obtain...
Apple macOS Catalina<10.15.2
Apple Mojave
Apple High Sierra
ubuntu/openldap<2.4.45+dfsg-1ubuntu1.3
ubuntu/openldap<2.4.47+dfsg-3ubuntu2.1
ubuntu/openldap<2.4.31-1+
and 32 more
CVE-2019-13050
Interaction between the sks-keyserver code through 1.2.0 of the SKS keyserver network, and GnuPG through 2.2.16, makes it risky to have a GnuPG keyserver configuration line referring to a host on the ...
Gnupg Gnupg<=2.2.16
Sks Keyserver Project Sks Keyserver<=1.2.0
Fedoraproject Fedora=29
Fedoraproject Fedora=30
openSUSE Leap=15.0
openSUSE Leap=15.1
and 1 more
CVE-2019-11479
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP segments. If the Maximum Segment Size (MSS) of a TCP connection was set to low values,...
redhat/kernel<0:2.6.32-754.15.3.el6
redhat/kernel<0:2.6.32-431.95.3.el6
redhat/kernel<0:2.6.32-504.79.3.el6
redhat/kernel-rt<0:3.10.0-957.21.3.rt56.935.el7
redhat/kernel<0:3.10.0-957.21.3.el7
redhat/kernel-alt<0:4.14.0-115.8.2.el7a
and 180 more
CVE-2019-11478
An excessive resource consumption flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment (SACK) segments. While processing SACK segments, the Linux ke...
redhat/kernel<0:2.6.32-754.15.3.el6
redhat/kernel<0:2.6.32-431.95.3.el6
redhat/kernel<0:2.6.32-504.79.3.el6
redhat/kernel-rt<0:3.10.0-957.21.3.rt56.935.el7
redhat/kernel<0:3.10.0-957.21.3.el7
redhat/kernel-alt<0:4.14.0-115.8.2.el7a
and 103 more
CVE-2019-11477
An integer overflow flaw was found in the way the Linux kernel's networking subsystem processed TCP Selective Acknowledgment (SACK) segments. While processing SACK segments, the Linux kernel's socket ...
redhat/kernel<0:2.6.32-754.15.3.el6
redhat/kernel<0:2.6.32-431.95.3.el6
redhat/kernel<0:2.6.32-504.79.3.el6
redhat/kernel-rt<0:3.10.0-957.21.3.rt56.935.el7
redhat/kernel<0:3.10.0-957.21.3.el7
redhat/kernel-alt<0:4.14.0-115.8.2.el7a
and 104 more
CVE-2019-5436
A heap buffer overflow in the TFTP receiving code allows for DoS or arbitrary code execution in libcurl versions 7.19.4 through 7.64.1.
IBM Data Risk Manager<=2.0.6
debian/curl
debian/curl<=7.52.1-5+deb9u9<=7.64.0-3<=7.52.1-5
Haxx Libcurl>=7.19.4<=7.64.1
openSUSE Leap=15.0
openSUSE Leap=15.1
and 13 more
CVE-2019-1559
OpenSSL could allow a remote attacker to obtain sensitive information, caused by the failure to immediately close the TCP connection after the hosts encounter a zero-length record with valid padding. ...
redhat/openssl<0:1.0.1e-58.el6_10
redhat/openssl<1:1.0.2k-19.el7
redhat/jws5-ecj<0:4.12.0-1.redhat_1.1.el6
redhat/jws5-javapackages-tools<0:3.4.1-5.15.11.el6
redhat/jws5-jboss-logging<0:3.3.2-1.Final_redhat_00001.1.el6
redhat/jws5-tomcat<0:9.0.21-10.redhat_4.1.el6
and 226 more
CVE-2019-9077
An issue was discovered in GNU Binutils 2.32. It is a heap-based buffer overflow in process_mips_specific in readelf.c via a malformed MIPS option section.
debian/binutils
ubuntu/binutils<2.30-21ubuntu1~18.04.3
ubuntu/binutils<2.33
ubuntu/binutils<2.26.1-1ubuntu1~16.04.8+
GNU Binutils=2.32
Netapp Element Software
and 2 more
CVE-2019-9070
An issue was discovered in GNU libiberty, as distributed in GNU Binutils 2.32. It is a heap-based buffer over-read in d_expression_1 in cp-demangle.c after many recursive calls.
debian/binutils
ubuntu/binutils<2.30-21ubuntu1~18.04.3
ubuntu/binutils<2.26.1-1ubuntu1~16.04.8+
ubuntu/libiberty<20170913-1ubuntu0.1
ubuntu/libiberty<20160215-1ubuntu0.3
GNU Binutils=2.32
and 4 more
CVE-2018-20657
A memory leak was found in the demangle_template function in GNU libiberty, as distributed in GNU Binutils. A crafted filed could cause the application to crash. Upstream issue: <a href="https://gcc...
GNU Binutils=2.31.1
F5 Traffix Signaling Delivery Controller>=5.0.0<=5.1.0
F5 Traffix Signaling Delivery Controller=4.4.0
CVE-2018-20002
The _bfd_generic_read_minisymbols function in syms.c in the Binary File Descriptor (BFD) library (aka libbfd), as distributed in GNU Binutils 2.31, has a memory leak via a crafted ELF file, leading to...
debian/binutils<=2.31.1-16
ubuntu/binutils<2.30-21ubuntu1~18.04.3
ubuntu/binutils<2.26.1-1ubuntu1~16.04.8+
GNU Binutils=2.31
Netapp Vasa Provider>=7.2
Netapp Cluster Data Ontap
and 4 more
CVE-2018-20836
An issue was discovered in the Linux kernel before 4.20. There is a race condition in smp_task_timedout() and smp_task_done() in drivers/scsi/libsas/sas_expander.c, leading to a use-after-free.
redhat/kernel-rt<0:3.10.0-1160.rt56.1131.el7
redhat/kernel<0:3.10.0-1160.el7
redhat/kernel<0:3.10.0-957.65.1.el7
redhat/kernel<0:3.10.0-1062.43.1.el7
ubuntu/linux<4.15.0-44.47
ubuntu/linux<4.18.0-14.15
and 82 more

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203