CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-22996

On all 7.x versions (fixed in 8.0.0), when set up for auto failover, a BIG-IQ Data Collection Device (DCD) cluster member that receives an undisclosed message may cause the corosync process to abort. This behavior may lead to a denial-of-service (DoS) and impact the stability of a BIG-IQ high availability (HA) cluster. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.7%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

https://support.f5.com/csp/article/K16352404
https://support.f5.com/csp/article/K16352404

Products affected by CVE-2021-22996

F5 » Big-Iq Centralized Management » Version: 7.0.0

cpe:2.3:a:f5:big-iq_centralized_management:7.0.0
F5 » Big-Iq Centralized Management » Version: 7.1.0

cpe:2.3:a:f5:big-iq_centralized_management:7.1.0
F5 » Big-Iq Centralized Management » Version: 7.1.0.1

cpe:2.3:a:f5:big-iq_centralized_management:7.1.0.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-22996

Products

Pricing

Contact Us