CPE-E4BB2D07-47B4-4ED2-93C8-9E789783512C Detail

CPE Details

F5 BIG-IP DDOS Hybrid Defender (DDHD) 16.0.1.1

Vendor

Product

big-ip_ddos_hybrid_defender

Version

16.0.1.1

Created

2021-02-16
12h56 +00:00

Modified

2021-05-14
12h21 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:16.0.1.1:::::::*

Informations

Vendor

Product

big-ip_ddos_hybrid_defender

Version

16.0.1.1

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2002-20001	2021-11-11 00h00 +00:00	The Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arbitrary numbers that are actually not public keys, and trigger expensive server-side DHE modular-exponentiation calculations, aka a D(HE)at or D(HE)ater attack. The client needs very little CPU resources and network bandwidth. The attack may be more disruptive in cases where a client can require a server to select its largest supported key size. The basic attack scenario is that the client must claim that it can only communicate with DHE, and the server must be configured to allow DHE.	7.5	High
CVE-2021-23027	2021-09-14 19h48 +00:00	On version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, and 14.1.x before 14.1.4.3, a DOM based cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to execute JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.	6.1	Medium
CVE-2021-23045	2021-09-14 14h54 +00:00	On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, 13.1.x before 13.1.4.1, and all versions of 12.1.x, when an SCTP profile with multiple paths is configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel (TMM) to terminate. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.	7.5	High
CVE-2021-23042	2021-09-14 12h56 +00:00	On BIG-IP version 16.0.x before 16.0.1.2, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.4, and 12.1.x before 12.1.6, when an HTTP profile is configured on a virtual server, undisclosed requests can cause a significant increase in system resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated.	7.5	High
CVE-2021-23007	2021-03-31 15h43 +00:00	On BIG-IP versions 14.1.4 and 16.0.1.1, when the Traffic Management Microkernel (TMM) process handles certain undisclosed traffic, it may start dropping all fragmented IP traffic. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.	5.3	Medium

F5 BIG-IP DDOS Hybrid Defender (DDHD) 16.0.1.1

CPE Details

CPE Name: cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:16.0.1.1:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:f5:big-ip_ddos_hybrid_defender:16.0.1.1:::::::*