Out-of-bounds Memory Vulnerability in F5 BIG-IP APM
CVE-2015-8098

9.8CRITICAL

Key Information:

Vendor
F5
Vendor
CVE Published:
12 January 2016

Summary

F5 BIG-IP APM is exposed to a vulnerability that enables remote attackers to exploit unspecified vectors when processing Citrix Remote Desktop connections via virtual servers configured with a remote desktop profile. This could lead to denial of service or potentially allow the execution of arbitrary code, emphasizing the need for prompt updates and adequate security measures.

References

EPSS Score

13% chance of being exploited in the next 30 days.

CVSS V3.1

Score:
9.8
Severity:
CRITICAL
Confidentiality:
High
Integrity:
High
Availability:
High
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.