CVE-2023-40534

Published Oct 10, 2023
Last updated a year ago
CVSS high 7.5
Overview

Description: When a client-side HTTP/2 profile and the HTTP MRF Router option are enabled for a virtual server, and an iRule using the HTTP_REQUEST event or Local Traffic Policy are associated with the virtual server, undisclosed requests can cause TMM to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.
Source: f5sirt@f5.com
NVD status: Analyzed
Risk scores

CVSS 3.1

Type: Primary
Base score: 7.5
Impact score: 3.6
Exploitability score: 3.9
Vector string: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Severity: HIGH
Weaknesses

f5sirt@f5.com: CWE-401
Hype score: Not currently trending
Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "92F10A0D-A487-4B2A-ADF7-4AB3C5A98001",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_access_policy_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A8D90B7-A1AF-4EFB-B688-1563D81E5C6D"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "2ADC24ED-14A3-4F96-A6DA-5A2FDC60A71B",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_firewall_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1A1CC91B-6920-4AF0-9EDD-DD3189E78F4D"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E42EBA0A-EC53-4885-9AFD-AFF83224214C",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1769D69A-CB59-46B1-89B3-FB97DC6DEB9B"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5E49638F-30AA-4112-8F6F-13F013F9E72B",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_analytics:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "59203EBF-C52A-45A1-B8DF-00E17E3EFB51"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3823874E-B0C1-4F7B-B1E7-1423C371E79C",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_acceleration_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5C698C1C-A3DD-46E2-B05A-12F2604E7F85"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C175FBF7-CF8D-48C2-B604-AC766AE3ECAD",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_security_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "87670A74-34FE-45DF-A725-25B804C845B3"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C509C00E-2C92-4905-BD2D-22B5BDDDE4EE",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67DB21AE-DF53-442D-B492-C4ED9A20B105"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FAD1751B-9818-474E-B970-719CE1AEA782",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_carrier-grade_nat:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7BC1D037-74D2-4F92-89AD-C90F6CBF440B"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9A519F4C-D469-47A0-9F61-2EE33976177D",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7B235A78-649B-46C5-B24B-AB485A884654"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "69DE4021-B15C-4310-8898-E4EC3EC0DA60",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_domain_name_system:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "84D00768-E71B-4FF7-A7BF-F2C8CFBC900D"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7A779434-C082-486E-8F65-587CE0BD1828",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_edge_gateway:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3F28D083-19BE-4584-A61A-85DD3CDC66BD"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "67CAB7BF-AC42-4957-9F8F-59CACA30D0A3",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_fraud_protection_service:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABBD10E8-6054-408F-9687-B9BF6375CA09"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "11EA68F6-028C-4A63-AFB6-0B6F36F5EB8C",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_global_traffic_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "83794B04-87E2-4CA9-81F5-BB820D0F5395"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "16657185-FDAA-4DF4-A2A1-1B5BAF8697FB",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_link_controller:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "0A6E7035-3299-474F-8F67-945EA9A059D0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "04ABC7AA-1D2D-4954-863B-A417794B1F5B",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_local_traffic_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "56FB92F7-FF1E-425D-A5AB-9D9FB0BB9450"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5190BFD8-0F6C-4CAF-9589-7CD8A589CDC3",
            "versionEndIncluding": "1.8.2",
            "versionStartIncluding": "1.6.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "957276C7-DA88-44F1-AB18-AA39DC1BF9B4",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_policy_enforcement_manager:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "667EB77B-DA13-4BA4-9371-EE3F3A109F38"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D6D0A641-7EF3-4F9E-9503-4A202E04102A",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_ssl_orchestrator:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C446827A-1F71-4FAD-9422-580642D26AD1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "095E5580-CF33-45EB-90DB-1EB4F0C0DFCA",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_webaccelerator:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3D1B2000-C3FE-4B4C-885A-A5076EB164E1"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_websafe:*:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "D097C6A6-5C8D-4275-B0CD-3947E11AA5B1",
            "versionEndExcluding": "16.1.4.1",
            "versionStartIncluding": "16.1.0"
          },
          {
            "criteria": "cpe:2.3:a:f5:big-ip_websafe:17.1.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "8AB23AE6-245E-43D6-B832-933F8259F937"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]
Overview

Risk scores

CVSS 3.1

Weaknesses

Social media

Configurations

References
