Main Vulnerability Database SB2022011929

SB2022011929 - Denial of service in BIG-IP AFM SYN cookie protection feature

Published: January 19, 2022

Security Bulletin ID SB2022011929

Severity

Medium

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Denial of service

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Incorrect calculation (CVE-ID: CVE-2022-23028)

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to incorrect calculation error when global AFM SYN cookie protection (TCP Half Open flood vector) is activated in the AFM Device Dos or DOS profile. Such configuration causes certain types of TCP connections fail. A remote attacker can send specially crafted traffic to the system and perform a denial of service (DoS) attack.

Remediation

Install update from vendor's website.

References

https://support.f5.com/csp/article/K16101409