CVE-2022-28708 — Improper Input Validation in F5 Big-ip Global Traffic Manager

CWE-20 — Improper Input Validation4 documents4 sources

Severity

5.9MEDIUMNVD

EPSS

0.5%

top 35.74%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

F5 Big-ip F5 Big-ip Access Policy Manager F5 Big-ip Advanced Firewall Manager +9 more

Timeline

PublishedMay 5

Latest updateMay 6

Description

On F5 BIG-IP 16.1.x versions prior to 16.1.2.2 and 15.1.x versions prior to 15.1.5.1, when a BIG-IP DNS resolver-enabled, HTTP-Explicit or SOCKS profile is configured on a virtual server, an undisclosed DNS response can cause the Traffic Management Microkernel (TMM) process to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages12 packages

▶NVDf5/big-ip_local_traffic_manager9 versions+8

▶NVDf5/big-ip_global_traffic_manager9 versions+8

▶CVEListV5f5/big-ip16.1.x — 16.1.2.2+1

▶NVDf5/big-ip_analytics9 versions+8

▶NVDf5/big-ip_link_controller9 versions+8

🔴Vulnerability Details

GHSA

GHSA-8h63-c783-x8gw: On F5 BIG-IP 16↗2022-05-06

▶

CVEList

CVE-2022-28708: On F5 BIG-IP 16↗2022-05-05

▶

📋Vendor Advisories

CVE-2022-28708: On F5 BIG-IP 16↗2022-05-05

▶