CVE-2022-23028: 
F5 BIG-IP Advanced Firewall Manager vulnerability analysis and mitigation

CVE-2022-23028 is a vulnerability affecting BIG-IP Advanced Firewall Manager (AFM) versions 16.x before 16.1.0, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x. The vulnerability was discovered and disclosed on January 25, 2022, affecting F5 Networks' BIG-IP AFM systems (NVD).

The vulnerability occurs when global AFM SYN cookie protection (TCP Half Open flood vector) is activated in the AFM Device Dos or DOS profile, causing certain types of TCP connections to fail. The vulnerability has been assigned a CVSS v3.1 Base Score of 5.3 (Medium) with a vector string of CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L. The vulnerability is classified under CWE-682 (Incorrect Calculation) (NVD).

When exploited, this vulnerability results in failed TCP connections when specific AFM SYN cookie protection features are enabled, potentially affecting network availability and service functionality (NVD).

F5 Networks has released patches to address this vulnerability. Users should upgrade to versions 16.1.0 or later, 15.1.5 or later, or 14.1.4.5 or later depending on their current version. Systems running version 13.1.x should be upgraded to a supported version as all versions in this branch are affected (NVD).