cve
5 Topics
F5 Rules for AWS WAF - CVE-2021-22118 & CVE-2016-1000027
Hello, We're checking in the AWS marketplace for theF5 Rules for AWS WAF - Common Vulnerabilities and Exposures (CVE) Rulesand want to check if the following CVEs are covered by this rule set? CVE-2021-22118: Local Privilege Escalation within Spring Webflux Multipart Request Handling CVE-2016-1000027:Pivotal Spring Framework through 5.3.16 suffers from a potential remote code execution (RCE) issue if used for Java deserialization of untrusted data. Thanks.Solved2.3KViews0likes18Comments
F5 Rules for AWS WAF - List of CVE
Hello, We're checking in the AWS marketplace for the F5 Rules for AWS WAF - Common Vulnerabilities and Exposures (CVE) Rules and we can't find the information of which CVE Rules are applied with this subscription. Where can we find the information of which CVEs are covered by this Rule set? When a new High Risk CVE is identified how long it would take to be added in the Rule set list? This information is needed so we can take a decision to use or not the solution, shouldn't this be described somewhere? Thanks in advance.Solved1.2KViews0likes4Comments
F5 and Linux Kernel CVE-2019-8980 Denial of Service Vulnerability
Hi all, I have been asked this morning by a military client for whom I monitor a number of LTM regarding the susceptibility of his equipment to this vulnerability (Linux Kernel CVE-2019-8980 Denial of Service Vulnerability) It's fully referenced here: CISA’s Cybersecurity Division I've had a look about and I cannot find anything specific beyond this document: K56480726: Linux kernel vulnerability CVE-2019-8980 however, I am aware that the status of this vulnerability under the aegis of NIST has very recently been placed back into scrutiny due to a lack of clarity regarding its modification. NIST document below refers: CVE-2019-8980 Detail Can anybody provide more timely advice on this situation?Solved1.1KViews0likes3CommentsF5 Rules for AWS WAF - List of CVE
I have checked the AWS WAF F5 rule - Common Vulnerabilities and Exposures (CVE) rule on the AWS marketplace, but is there a WAF rule that corresponds to the following CVE? - CVE-2022-24963(https://nvd.nist.gov/vuln/detail/CVE-2022-24963#match-8865215) - CVE-2022-25147(https://nvd.nist.gov/vuln/detail/CVE-2022-25147)714Views0likes1Comment