VYPR
Unrated severityNVD Advisory· Published Feb 14, 2024· Updated Aug 27, 2024

BIG-IP HTTP/2 vulnerability

CVE-2024-23314

Description

When HTTP/2 is configured on BIG-IP or BIG-IP Next SPK systems, undisclosed responses can cause the Traffic Management Microkernel (TMM) to terminate.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated

Affected products

4
  • F5, Inc./Big IPllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 17.1.0
  • F5, Inc./Big IP Spkllm-fuzzy2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: 1.5.0

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.