CVE-2022-23011
Published Jan 25, 2022
Last updated 3 years ago
Overview
- Description
- On certain hardware BIG-IP platforms, in version 15.1.x before 15.1.4 and 14.1.x before 14.1.3, virtual servers may stop responding while processing TCP traffic due to an issue in the SYN Cookie Protection feature. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
- Source
- f5sirt@f5.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 3.1
- Type
- Primary
- Base score
- 7.5
- Impact score
- 3.6
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 5
- Impact score
- 2.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:P
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B8964C4-8173-4AAE-9BDD-6E9E60E3D1B2",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0328FE23-1C06-406A-8642-949756256D2A",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "054C143E-E80F-45D3-A340-7E1AC63A620C",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C147826-2DB0-452D-9D91-E61F0E5D51DB",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D33356C1-41FC-494D-A976-D51A083CCF27",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66075ADA-C87D-4722-BDED-1A7E41CEC2D5",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11CA1E38-4AEF-4C83-A946-7B308AF55422",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34AA39ED-7483-427C-972C-7FAE31D62D26",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "35F9DD18-4B9C-46B4-ACAC-C324CD00AEA1",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9234D7E3-CC96-4EA4-AEEF-76A8E2EDE80E",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0008CA6C-AEA6-455F-811C-537A5513E040",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C8322730-8A09-4BC4-8FDD-29CC799BBED0",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C28C559-0AF0-4237-BFC6-CBD7B0AC8829",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5836FEFF-7525-4C4E-9367-8650687F3035",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CDBB909-DA0C-4FCA-9841-B570C69C4EAA",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD9541A9-35D6-4349-817C-E32743A0F4FB",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F98CFC48-9623-4704-B1F0-612C6C0EEA6A",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F60CE798-3B05-413A-AE3F-ECF9226743A1",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D585324-BD2D-4EEC-9D23-4B3E4935771A",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8060391D-849D-4190-9111-B5D273CB2851",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70F18F95-C2EA-446C-954F-4CD3972E5DB7",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D00592FC-9ABD-4322-A1CB-6EFCD4863055",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:f5:big-ip_i850:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "264AE307-F150-4737-8E79-5B9B30558A7A"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B8964C4-8173-4AAE-9BDD-6E9E60E3D1B2",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0328FE23-1C06-406A-8642-949756256D2A",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "054C143E-E80F-45D3-A340-7E1AC63A620C",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C147826-2DB0-452D-9D91-E61F0E5D51DB",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D33356C1-41FC-494D-A976-D51A083CCF27",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66075ADA-C87D-4722-BDED-1A7E41CEC2D5",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11CA1E38-4AEF-4C83-A946-7B308AF55422",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34AA39ED-7483-427C-972C-7FAE31D62D26",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "35F9DD18-4B9C-46B4-ACAC-C324CD00AEA1",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9234D7E3-CC96-4EA4-AEEF-76A8E2EDE80E",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0008CA6C-AEA6-455F-811C-537A5513E040",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C8322730-8A09-4BC4-8FDD-29CC799BBED0",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C28C559-0AF0-4237-BFC6-CBD7B0AC8829",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5836FEFF-7525-4C4E-9367-8650687F3035",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CDBB909-DA0C-4FCA-9841-B570C69C4EAA",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD9541A9-35D6-4349-817C-E32743A0F4FB",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F98CFC48-9623-4704-B1F0-612C6C0EEA6A",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F60CE798-3B05-413A-AE3F-ECF9226743A1",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D585324-BD2D-4EEC-9D23-4B3E4935771A",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8060391D-849D-4190-9111-B5D273CB2851",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70F18F95-C2EA-446C-954F-4CD3972E5DB7",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D00592FC-9ABD-4322-A1CB-6EFCD4863055",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:f5:big-ip_i2600:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "7A10E805-0870-46E4-8817-1ADBDFAD6C26"
}
],
"operator": "OR"
}
],
"operator": "AND"
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5B8964C4-8173-4AAE-9BDD-6E9E60E3D1B2",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0328FE23-1C06-406A-8642-949756256D2A",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "054C143E-E80F-45D3-A340-7E1AC63A620C",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C147826-2DB0-452D-9D91-E61F0E5D51DB",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D33356C1-41FC-494D-A976-D51A083CCF27",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "66075ADA-C87D-4722-BDED-1A7E41CEC2D5",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11CA1E38-4AEF-4C83-A946-7B308AF55422",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "34AA39ED-7483-427C-972C-7FAE31D62D26",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "35F9DD18-4B9C-46B4-ACAC-C324CD00AEA1",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9234D7E3-CC96-4EA4-AEEF-76A8E2EDE80E",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0008CA6C-AEA6-455F-811C-537A5513E040",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C8322730-8A09-4BC4-8FDD-29CC799BBED0",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6C28C559-0AF0-4237-BFC6-CBD7B0AC8829",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5836FEFF-7525-4C4E-9367-8650687F3035",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1CDBB909-DA0C-4FCA-9841-B570C69C4EAA",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AD9541A9-35D6-4349-817C-E32743A0F4FB",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F98CFC48-9623-4704-B1F0-612C6C0EEA6A",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F60CE798-3B05-413A-AE3F-ECF9226743A1",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5D585324-BD2D-4EEC-9D23-4B3E4935771A",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8060391D-849D-4190-9111-B5D273CB2851",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "70F18F95-C2EA-446C-954F-4CD3972E5DB7",
"versionEndExcluding": "14.1.3",
"versionStartIncluding": "14.1.0"
},
{
"criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D00592FC-9ABD-4322-A1CB-6EFCD4863055",
"versionEndExcluding": "15.1.4",
"versionStartIncluding": "15.1.0"
}
],
"operator": "OR"
},
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:h:f5:big-ip_i2800:-:*:*:*:*:*:*:*",
"vulnerable": false,
"matchCriteriaId": "0A8D292D-1CA1-4FC8-817C-5B99D16DBB39"
}
],
"operator": "OR"
}
],
"operator": "AND"
}
]