On BIG-IP Advanced WAF and ASM version 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.6, and all 12.1.x versions, when the BIG-IP ASM system processes WebSocket requests with JSON payloads, an unusually large number of parameters can cause excessive CPU usage in the BIG-IP ASM bd process. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://support.f5.com/csp/article/K88230177 |
History
No history.
MITRE
Status: PUBLISHED
Assigner: f5
Published: 2021-02-12T17:43:49
Updated: 2024-08-03T18:58:26.167Z
Reserved: 2021-01-06T00:00:00
Link: CVE-2021-22976
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2021-02-12T18:15:12.610
Modified: 2022-07-12T17:42:04.277
Link: CVE-2021-22976
Redhat
No data.