F5 Products Denial of Service Vulnerability

December 17, 2024

A vulnerability was identified in F5 Products. A remote attacker could exploit this vulnerability to trigger denial of service condition on the targeted system.

 

Note:

No patch is currently available for CVE-2024-7592 of the affected products. Hence, the risk level is rated from Medium Risk to High Risk.

RISK: High Risk

High Risk

TYPE: Operating Systems – Networks OS

TYPE: Networks OS

Impact

  • Denial of Service

System / Technologies affected

BIG-IP Next SPK

 

  • 1.7.0 – 1.9.2

 

BIG-IP Next CNF

 

  • 1.1.0 – 1.3.3
 

Solutions

Please visit the vendor web-site for more details.

 

Apply workarounds issued by the vendor:

 

Workaround:

Mitigate the vulnerability of attacks by following workaround:

 

  1. Refrain from using the Python http.cookies module in custom scripts.

Vulnerability Identifier

Source

Related Link

https://my.f5.com/manage/s/article/K000148969

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

Tags: ,

You may have missed

hkcert

Adobe Monthly Security Update (March 2024)

December 17, 2024
hkcert

F5 Products Denial of Service Vulnerability

December 17, 2024
hkcert

Microsoft Monthly Security Update (June 2024)

December 17, 2024
image

CVE Alert: CVE-2024-12663

December 17, 2024
image

CVE Alert: CVE-2024-12662

December 17, 2024