f5

1,024 tracked vulnerabilities.

CVE-2022-31473 MEDIUM
BIG-IP <16.1.1, 15.1.4 - Auth Bypass
Aug 04, 2022
CVSS 6.8
EPSS 0.01
CVE-2022-30535 MEDIUM
F5 NGINX Ingress Controller 1.x and 2.x < 2.3.0 - Authenticated Secret Exposure via Ingress Object Manipulation
Aug 04, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-34032 HIGH
Nginx NJS <0.7.5 - Memory Corruption
Jul 18, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-34031 HIGH
Nginx NJS 0.7.5 - Segmentation Violation via njs_value_to_number
Jul 18, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-34030 HIGH
Nginx NJS <0.7.5 - Memory Corruption
Jul 18, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-34029 CRITICAL
Nginx NJS 0.7.4 - Out-of-bounds Read via njs_scope_value
Jul 18, 2022
CVSS 9.1
EPSS 0.00
CVE-2022-34028 HIGH
Nginx NJS v0.7.5 - Segmentation Violation via njs_utf8_next
Jul 18, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-34027 HIGH
Nginx NJS <0.7.4 - Memory Corruption
Jul 18, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-32414 MEDIUM
Nginx NJS 0.7.2 - Use-After-Free in njs_vmcode_interpreter
Jun 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-31307 MEDIUM
Nginx NJS <0.7.2 - Memory Corruption
Jun 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-31306 MEDIUM
Nginx NJS <0.7.2 - Memory Corruption
Jun 21, 2022
CVSS 5.5
EPSS 0.00
CVE-2022-29379 CRITICAL
Nginx NJS - Stack Overflow in njs_default_module_loader
May 25, 2022
CVSS 9.8
EPSS 0.00
CVE-2022-29369 HIGH
Nginx NJS <0.7.2 - Memory Corruption
May 12, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-29491 HIGH
F5 BIG-IP LTM, Advanced WAF, ASM, APM < 16.1.2.2, < 15.1.5, < 14.1.4.6 - DoS via DTLS Virtual Server
May 05, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-29480 MEDIUM
F5 BIG-IP 11.6.x 12.1.x < 13.1.5 - Uncontrolled Resource Consumption via big3d Requests
May 05, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-29479 MEDIUM
F5 Big-ip Access Policy Manager - Improper Input Validation
May 05, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-29474 MEDIUM
F5 BIG-IP Directory Traversal in iControl SOAP (Auth Required)
May 05, 2022
CVSS 4.3
EPSS 0.00
CVE-2022-29473 MEDIUM
F5 BIG-IP 15.1.x < 15.1.5.1, 14.1.x < 14.1.4.6, 13.1.x < 13.1.5 - Denial of Service via IPSec ALG Profile
May 05, 2022
CVSS 5.9
EPSS 0.01
CVE-2022-29263 HIGH
F5 BIG-IP APM <16.1.2.2, <15.1.5.1, <14.1.4.6, <13.1.5, <=12.1.x, <...
May 05, 2022
CVSS 7.8
EPSS 0.00
CVE-2022-28859 MEDIUM
F5 BIG-IP <15.1.5.1,14.1.4.6 - Info Disclosure
May 05, 2022
CVSS 6.5
EPSS 0.00
CVE-2022-28716 HIGH
BIG-IP <16.1.2.2, 15.1.5.1, 14.1.4.6, 13.1.5, 12.1.x, 11.6.x - XSS
May 05, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-28714 HIGH
F5 BIG-IP APM <16.1.2.2, <15.1.5.1, <14.1.4.6, <13.1.5, <=12.1.x, <...
May 05, 2022
CVSS 7.3
EPSS 0.00
CVE-2022-28708 MEDIUM
F5 BIG-IP <16.1.2.2 & 15.1.5.1 - DoS
May 05, 2022
CVSS 5.9
EPSS 0.00
CVE-2022-28707 HIGH
F5 BIG-IP <16.1.2.2, 15.1.5.1, 14.1.4.6 - XSS
May 05, 2022
CVSS 8.0
EPSS 0.00
CVE-2022-28706 MEDIUM
F5 BIG-IP <16.1.2, 15.1.x <15.1.5.1 - DoS
May 05, 2022
CVSS 5.9
EPSS 0.01
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV