VYPR
Unrated severityNVD Advisory· Published Oct 19, 2022· Updated May 8, 2025

BIG-IP and BIG-IQ iControl REST vulnerability CVE-2022-41770

CVE-2022-41770

Description

In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, 14.1.x before 14.1.5.1, and all versions of 13.1.x, and BIG-IQ all versions of 8.x and 7.x, an authenticated iControl REST user can cause an increase in memory resource utilization, via undisclosed requests.

Affected products

3
  • F5, Inc./Big IPllm-fuzzy3 versions
    >= 13.1.0, <= 13.1.5 / >= 14.1.0, <= 14.1.5.0 / >= 15.1.0, <= 15.1.6 / >= 16.1.0, <= 16.1.3.0 / >= 17.0.0, <= 17.0.0.0+ 2 more
    • (no CPE)range: >= 13.1.0, <= 13.1.5 / >= 14.1.0, <= 14.1.5.0 / >= 15.1.0, <= 15.1.6 / >= 16.1.0, <= 16.1.3.0 / >= 17.0.0, <= 17.0.0.0
    • (no CPE)range: 17.0.x
    • (no CPE)range: 8.0.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.