F5 BIG-IP AFM up to 14.1.5.2/15.1.7/16.1.3.2/17.0.0.1 Traffic Management Microkernel uninitialized resource
| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.3 | $0-$5k | 0.00 |
Summary
A vulnerability identified as critical has been detected in F5 BIG-IP AFM up to 14.1.5.2/15.1.7/16.1.3.2/17.0.0.1. The impacted element is an unknown function of the component Traffic Management Microkernel. Performing a manipulation results in uninitialized resource. This vulnerability was named CVE-2023-22281. The attack may be initiated remotely. There is no available exploit. You should upgrade the affected component.
Details
A vulnerability, which was classified as critical, was found in F5 BIG-IP AFM up to 14.1.5.2/15.1.7/16.1.3.2/17.0.0.1 (Firewall Software). This affects some unknown functionality of the component Traffic Management Microkernel. The manipulation with an unknown input leads to a uninitialized resource vulnerability. CWE is classifying the issue as CWE-908. The product uses or accesses a resource that has not been initialized. This is going to have an impact on availability. The summary by CVE is:
On versions 17.0.x before 17.0.0.2, 16.1.x before 16.1.3.3, 15.1.x before 15.1.8, 14.1.x before 14.1.5.3, and all versions of 13.1.x, when a BIG-IP AFM NAT policy with a destination NAT rule is configured on a FastL4 virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
The weakness was presented 02/01/2023 as K46048342. It is possible to read the advisory at my.f5.com. This vulnerability is uniquely identified as CVE-2023-22281 since 01/13/2023. The technical details are unknown and an exploit is not publicly available.
Upgrading to version 14.1.5.3, 15.1.8, 16.1.3.3 or 17.0.0.2 eliminates this vulnerability.
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
Product
Type
Vendor
Name
Version
- 14.1.5.0
- 14.1.5.1
- 14.1.5.2
- 15.1.0
- 15.1.1
- 15.1.2
- 15.1.3
- 15.1.4
- 15.1.5
- 15.1.6
- 15.1.7
- 16.1.3.0
- 16.1.3.1
- 16.1.3.2
- 17.0.0.0
- 17.0.0.1
License
Website
- Vendor: https://f5.com/
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.5VulDB Meta Temp Score: 7.3
VulDB Base Score: 7.5
VulDB Temp Score: 7.2
VulDB Vector: 🔍
VulDB Reliability: 🔍
CNA Base Score: 7.5
CNA Vector (F5 Networks): 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
Exploiting
Class: Uninitialized resourceCWE: CWE-908
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: UpgradeStatus: 🔍
0-Day Time: 🔍
Upgrade: BIG-IP AFM 14.1.5.3/15.1.8/16.1.3.3/17.0.0.2
Timeline
01/13/2023 🔍02/01/2023 🔍
02/01/2023 🔍
02/01/2023 🔍
Sources
Vendor: f5.comAdvisory: K46048342
Status: Confirmed
CVE: CVE-2023-22281 (🔍)
GCVE (CVE): GCVE-0-2023-22281
GCVE (VulDB): GCVE-100-219963
Entry
Created: 02/01/2023 20:41Changes: 02/01/2023 20:41 (51)
Complete: 🔍
Cache ID: 216::103
Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.
No comments yet. Languages: en.
Please log in to comment.