CVE-2022-41806
published 2022-10-19CVE-2022-41806: In versions 16.1.x before 16.1.3.2 and 15.1.x before 15.1.5.1, when BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is…
high7.5CVSS 3.1
AVNACLPRNUINSUCNINAH
In versions 16.1.x before 16.1.3.2 and 15.1.x before 15.1.5.1, when BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| f5 | big-ip_advanced_firewall_manager | >= 15.1.0 < 15.1.5.1 | 15.1.5.1 |
| f5 | big-ip_advanced_firewall_manager | >= 16.1.0 < 16.1.3.2 | 16.1.3.2 |
| f5 | big-ip_afm | — | — |
| f5 | big-ip_afm | >= 15.1.x < 15.1.5.1 | 15.1.5.1 |
| f5 | big-ip_afm | >= 16.1.x < 16.1.3.2 | 16.1.3.2 |