CVE-2021-22999

Published: Mar 31, 2021

Modified: Aug 3, 2024

PUBLISHED

Description

On versions 15.0.x before 15.1.0 and 14.1.x before 14.1.4, the BIG-IP system provides an option to connect HTTP/2 clients to HTTP/1.x servers. When a client is slow to accept responses and it closes a connection prematurely, the BIG-IP system may indefinitely retain some streams unclosed. Note: Software versions which have reached End of Software Development (EoSD) are not evaluated.

Vendor	Product	Versions
n/a	BIG-IP	affected `15.0.x before 15.1.0, 14.1.x before 14.1.4`

References

https://support.f5.com/csp/article/K02333782

x_refsource_MISC

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2021-22999

Description

Affected Products

References