f5

1,031 tracked vulnerabilities.

CVE-2023-22839 HIGH
BIG-IP DNS 13.1.0-13.1.4, 14.1.0-14.1.5.2, 15.1.0-15.1.8, 16.1.0-16.1.3.2, 17.0.0-17.0.0.1 DoS via Rapid Response Mode
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22664 HIGH
BIG-IP 16.1.0-16.1.3.2 and 17.0.0-17.0.0.1 - Uncontrolled Resource Consumption via HTTP/2 Profile
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22657 HIGH
F5OS-A 1.2.0-1.2.9 and F5OS-C 1.3.0-1.4.9 - OS Command Injection via Tenant File Name Processing
Feb 01, 2023
CVSS 7.0
EPSS 0.00
CVE-2023-22422 HIGH
BIG-IP 16.1.0-16.1.3.2 and 17.0.0-17.0.0.1 - Denial of Service via HTTP Compliance Enforcement
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22418 MEDIUM
BIG-IP APM 13.1.0-13.1.5, 14.1.0-14.1.5.3, 15.1.0-15.1.7, 16.1.0-16.1.3.3, 17.0.0-17.0.0.2 Open Redirect
Feb 01, 2023
CVSS 6.1
EPSS 0.00
CVE-2023-22374 HIGH
F5 BIG-IP Access Policy Manager 14.1.4.6-14.1.5 - Authenticated Format String Injection via iControl SOAP
Feb 01, 2023
CVSS 8.5
EPSS 0.73
CVE-2023-22358 HIGH
BIG-IP Edge Client <7.2.3.1 - DLL Hijacking
Feb 01, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-22341 HIGH
BIG-IP APM <14.1.5.3,13.1.x - Info Disclosure
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22340 HIGH
BIG-IP <16.1.3.3, <15.1.8, <14.1.5.3, <=13.1.x - DoS
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22326 MEDIUM
BIG-IP <17.0.0.2,16.1.3.3,15.1.8.1,14.1.5.3,13.1.x - Info Disclosure
Feb 01, 2023
CVSS 4.9
EPSS 0.01
CVE-2023-22323 HIGH
BIP-IP <17.0.0.2, <16.1.3.3, <15.1.8.1, <14.1.5.3, 13.1.x - DoS
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-22302 MEDIUM
F5 BIG-IP 16.1.2.2-16.1.3.2 and 17.0.0-17.0.0.1 - Denial of Service via HTTP Profile Configuration
Feb 01, 2023
CVSS 5.9
EPSS 0.01
CVE-2023-22283 MEDIUM
BIG-IP Edge Client <7.2.3.1 - DLL Hijacking
Feb 01, 2023
CVSS 6.5
EPSS 0.00
CVE-2023-22281 HIGH
BIG-IP AFM <17.0.0.2, <16.1.3.3, <15.1.8, <14.1.5.3, <=13.1.x - DoS
Feb 01, 2023
CVSS 7.5
EPSS 0.01
CVE-2022-41800 HIGH NUCLEI
F5 BIG-IP - Authenticated Appliance Mode Bypass via Undisclosed iControl REST Endpoint
Dec 07, 2022
CVSS 8.7
EPSS 0.62
CVE-2022-41622 HIGH
F5 BIG-IP and BIG-IQ - Cross-Site Request Forgery via iControl SOAP
Dec 07, 2022
CVSS 8.8
EPSS 0.88
CVE-2022-43286 CRITICAL
Nginx NJS v0.7.2 - Use-After-Free in njs_json_parse_iterator_call
Oct 28, 2022
CVSS 9.8
EPSS 0.01
CVE-2022-43285 HIGH
Nginx NJS v0.7.4 - Out-of-bounds Write in njs_promise_reaction_job
Oct 28, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-43284 HIGH
Nginx NJS 0.7.2-0.7.4 - Segmentation Violation via njs_scope_valid_value
Oct 28, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41983 LOW
F5 Big-ip Access Policy Manager < 13.1.5 - Cleartext Transmission
Oct 19, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-41836 HIGH
F5 F5 BIG-IP Advanced WAF and ASM - Denial of Service via Attack Signature False Positive Mode
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41835 HIGH
F5OS-A/F5OS-C <1.1.0/<1.5.0 - Privilege Escalation
Oct 19, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-41833 HIGH
F5 BIG-IP 13.1.0-13.1.4 - Denial of Service via HTTP::collect iRule
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41832 HIGH
BIG-IP <17.0.0.1, <16.1.3.1, <15.1.6.1, <14.1.5.1, <13.1.5.1 - Info...
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41813 MEDIUM
BIG-IP <16.1.3.1, <15.1.6.1, <14.1.5, 13.1.x - DoS
Oct 19, 2022
CVSS 6.5
EPSS 0.01