CVE-2022-41806: 
F5 BIG-IP Advanced Firewall Manager vulnerability analysis and mitigation

A vulnerability identified as CVE-2022-41806 affects BIG-IP AFM (Advanced Firewall Manager) versions 16.1.x before 16.1.3.2 and 15.1.x before 15.1.5.1. The vulnerability was discovered and assigned on September 30, 2022. It specifically impacts systems where BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is configured on a virtual server (CVE Details).

The vulnerability is classified under CWE-400 (Uncontrolled Resource Consumption). When exploited, it can lead to increased memory resource utilization through undisclosed requests. The vulnerability has received a CVSS v3.1 Base Score of 7.5 (HIGH) with the vector string CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H, indicating it is network accessible, requires low attack complexity, needs no privileges or user interaction, and can result in high availability impact (NVD).

The primary impact of this vulnerability is on system availability. When exploited, it can cause an increase in memory resource utilization in systems where BIG-IP AFM Network Address Translation policy with IPv6/IPv4 translation rules is configured on a virtual server (CVE Details).

Affected users should upgrade to versions 16.1.3.2 or 15.1.5.1 or later, depending on their current version track. The vulnerability has been addressed in these updated versions (F5 Advisory).