f5

1,024 tracked vulnerabilities.

CVE-2022-41694 MEDIUM
BIG-IP <16.1.3,15.1.6.1,14.1.5,13.1.x - DoS
Oct 19, 2022
CVSS 4.9
EPSS 0.01
CVE-2022-41691 HIGH
F5 BIG-IP Advanced WAF/ASM 14.1.0-14.1.5.1 - Denial of Service via Security Policy Processing
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41624 HIGH
BIG-IP 13.1.0-13.1.5.1 14.1.0-14.1.5.2 15.1.0-15.1.7 16.1.0-16.1.3.2 17.0.0 - Use-After-Free via Sideband iRule
Oct 19, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-41617 HIGH
BIG-IP <16.1.3.1, <15.1.6.1, <14.1.5.1, <13.1.5.1 - Authenticated RCE
Oct 19, 2022
CVSS 7.2
EPSS 0.04
CVE-2022-36795 MEDIUM
BIG-IP <17.0.0.1, <16.1.3.1, <15.1.7, <14.1.5.1 - DoS
Oct 19, 2022
CVSS 5.3
EPSS 0.00
CVE-2022-38890 MEDIUM
Nginx NJS v0.7.7 - Out-of-bounds Read via njs_utf8_next
Sep 15, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-35735 HIGH
BIG-IP <16.1.3.1, 15.1.x <15.1.6.1, 14.1.x <14.1.5.1, 13.1.x - Priv...
Aug 04, 2022
CVSS 7.2
EPSS 0.02
CVE-2022-35728 HIGH
BIG-IP <17.0.0.1, 16.1.x <16.1.3.1, 15.1.x <15.1.6.1, 14.1.x <14.1....
Aug 04, 2022
CVSS 8.1
EPSS 0.01
CVE-2022-35272 HIGH
BIG-IP 16.1.0-16.1.3.1 and 17.0.0 - Denial of Service via MRF Virtual Server Source-Port Preserve-Strict Configuration
Aug 04, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-35245 HIGH
BIG-IP APM 14.1.0-14.1.5.1 - Denial of Service via Traffic Management Microkernel Termination
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-35243 HIGH
BIG-IP 13.1.x < 13.1.5, 14.1.x < 14.1.5, 15.1.x < 15.1.5.1, 16.1.x < 16.1.3 - Privilege Escalation via iControl REST
Aug 04, 2022
CVSS 8.7
EPSS 0.00
CVE-2022-35241 MEDIUM
F5 NGINX Instance Manager 1.x and 2.x < 2.3.1 - Uncontrolled Resource Consumption
Aug 04, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-35240 HIGH
BIG-IP 14.1.0-14.1.4 - Memory Resource Exhaustion via MQTT Profile
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-35236 HIGH
F5 BIG-IP 14.1.0-14.1.4 - Uncontrolled Resource Consumption via HTTP2 Profile
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34865 MEDIUM
BIG-IP 13.1.0-13.1.5 - Traffic Intelligence Feed Data Poisoning via Improper Certificate Validation
Aug 04, 2022
CVSS 4.8
EPSS 0.00
CVE-2022-34862 HIGH
BIG-IP 13.1.0-13.1.4, 14.1.0-14.1.4, 15.1.0-15.1.6, 16.1.0-16.1.3 DoS via LTM Virtual Server
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34851 MEDIUM
F5 BIG-IP 13.1.x-17.0.x - Authenticated Denial of Service via iControl SOAP
Aug 04, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-34844 MEDIUM
F5 BIG-IP 15.1.0-15.1.6.1 and 16.1.0-16.1.3.1 - Denial of Service via DPDK/ENA Driver Traffic
Aug 04, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-34655 HIGH
BIG-IP 14.1.0-14.1.4 - Denial of Service via iRule HTTP::payload Command
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34651 HIGH
BIG-IP 15.1.0-15.1.6.1 and 16.1.0-16.1.3.1 - Denial of Service via TLS 1.3 HTTP::respond iRule
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-33968 LOW
F5 BIG-IP 13.1.x-17.0.x - Out-of-bounds Read via NTLM Challenge-Response
Aug 04, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-33962 MEDIUM
BIG-IP <17.0.0.1, 16.1.x <16.1.3.1, 15.1.x <15.1.6.1, 14.1.x <14.1....
Aug 04, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-33947 MEDIUM
BIG-IP <16.1.3,15.1.6.1,14.1.5,13.1.x - Privilege Escalation
Aug 04, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-33203 HIGH
BIG-IP <16.1.3, 15.1.6.1, 14.1.5 - DoS
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-32455 HIGH
BIG-IP 13.1.x-16.1.x - Denial of Service via Client SSL Profile with Session Tickets
Aug 04, 2022
CVSS 7.5
EPSS 0.00
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV