cbcvebase.
CVE-2022-36795
published 2022-10-19

CVE-2022-36795: In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, and 14.1.x before 14.1.5.1, when an LTM TCP profile with Auto Receive…

high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, and 14.1.x before 14.1.5.1, when an LTM TCP profile with Auto Receive Window Enabled is configured on a virtual server, undisclosed traffic can cause the virtual server to stop processing new client connections.

Affected

59 ranges· showing 25
VendorProductVersion rangeFixed in
f5big-ip>= 14.1.x < 14.1.5.114.1.5.1
f5big-ip>= 15.1.x < 15.1.715.1.7
f5big-ip>= 16.1.x < 16.1.3.116.1.3.1
f5big-ip>= 17.0.x < 17.0.0.117.0.0.1
f5big-ip_aam
f5big-ip_access_policy_manager>= 14.1.0 < 14.1.5.114.1.5.1
f5big-ip_access_policy_manager>= 15.1.0 < 15.1.715.1.7
f5big-ip_access_policy_manager>= 16.1.0 < 16.1.3.116.1.3.1
f5big-ip_access_policy_manager>= 17.0.0 < 17.0.0.117.0.0.1
f5big-ip_advanced_firewall_manager>= 14.1.0 < 14.1.5.114.1.5.1
f5big-ip_advanced_firewall_manager>= 15.1.0 < 15.1.715.1.7
f5big-ip_advanced_firewall_manager>= 16.1.0 < 16.1.3.116.1.3.1
f5big-ip_advanced_firewall_manager>= 17.0.0 < 17.0.0.117.0.0.1
f5big-ip_afm
f5big-ip_analytics
f5big-ip_analytics>= 14.1.0 < 14.1.5.114.1.5.1
f5big-ip_analytics>= 15.1.0 < 15.1.715.1.7
f5big-ip_analytics>= 16.1.0 < 16.1.3.116.1.3.1
f5big-ip_analytics>= 17.0.0 < 17.0.0.117.0.0.1
f5big-ip_apm
f5big-ip_application_acceleration_manager>= 14.1.0 < 14.1.5.114.1.5.1
f5big-ip_application_acceleration_manager>= 15.1.0 < 15.1.715.1.7
f5big-ip_application_acceleration_manager>= 16.1.0 < 16.1.3.116.1.3.1
f5big-ip_application_acceleration_manager>= 17.0.0 < 17.0.0.117.0.0.1
f5big-ip_application_security_manager>= 14.1.0 < 14.1.5.114.1.5.1
CVE-2022-36795 — Incorrect Calculation in F5 | cvebase