When an SSL profile is configured on a Virtual Server, undisclosed traffic can cause an increase in CPU or SSL accelerator resource utilization.   Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact Low

User Interaction None

No CVSS v3.0

No CVSS v2

Vendors Products
F5
  • Big-ip Analytics
  • Big-ip Application Acceleration Manager
  • Big-ip Fraud Protection Service
  • Big-ip Domain Name System
  • Big-ip Application Security Manager
  • Big-ip Carrier-grade Nat
  • Big-ip Policy Enforcement Manager
  • Big-ip Webaccelerator
  • Big-ip Advanced Firewall Manager
  • Big-ip Local Traffic Manager
  • Big-ip Websafe
  • Big-ip Ddos Hybrid Defender
  • Big-ip Global Traffic Manager
  • Big-ip Edge Gateway
  • Big-ip Next Service Proxy For Kubernetes
  • Big-ip Advanced Web Application Firewall
  • Big-ip Access Policy Manager
  • Big-ip Link Controller
  • Big-ip Ssl Orchestrator
  • Big-ip Application Visibility And Reporting

Configuration 1 [-]

OR cpe:2.3:a:f5:big-ip_access_policy_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_access_policy_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_access_policy_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_firewall_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_advanced_web_application_firewall:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_analytics:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_analytics:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_analytics:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_acceleration_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_acceleration_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_acceleration_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_security_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_application_visibility_and_reporting:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_carrier-grade_nat:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_carrier-grade_nat:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_carrier-grade_nat:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_domain_name_system:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_domain_name_system:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_domain_name_system:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_edge_gateway:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_edge_gateway:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_edge_gateway:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_fraud_protection_service:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_fraud_protection_service:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_fraud_protection_service:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_global_traffic_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_global_traffic_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_global_traffic_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_link_controller:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_link_controller:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_link_controller:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_local_traffic_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_local_traffic_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_local_traffic_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_next_service_proxy_for_kubernetes:1.5.0:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_policy_enforcement_manager:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ssl_orchestrator:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ssl_orchestrator:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_ssl_orchestrator:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_webaccelerator:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_webaccelerator:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_webaccelerator:16.1.2:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_websafe:14.1.5:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_websafe:15.1.4.1:*:*:*:*:*:*:*
cpe:2.3:a:f5:big-ip_websafe:16.1.2:*:*:*:*:*:*:*
References
Link Resource
https://my.f5.com/manage/s/article/K000133132 Vendor Advisory
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: f5

Published: 2023-05-03T14:31:16.883Z

Updated: 2023-05-03T14:31:16.883Z

Reserved: 2023-04-14T23:08:02.590Z

Link: CVE-2023-24594

JSON object: View

cve-icon NVD Information

Status : Analyzed

Published: 2023-05-03T15:15:12.447

Modified: 2023-10-05T14:59:56.710

Link: CVE-2023-24594

JSON object: View

cve-icon Redhat Information

No data.

CWE