f5
1,031 tracked vulnerabilities.
CVE-2022-34655
HIGH
BIG-IP 14.1.0-14.1.4 - Denial of Service via iRule HTTP::payload Command
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34651
HIGH
BIG-IP 15.1.0-15.1.6.1 and 16.1.0-16.1.3.1 - Denial of Service via TLS 1.3 HTTP::respond iRule
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-33968
LOW
F5 BIG-IP 13.1.x-17.0.x - Out-of-bounds Read via NTLM Challenge-Response
Aug 04, 2022
CVSS 3.7
EPSS 0.00
CVE-2022-33962
MEDIUM
BIG-IP <17.0.0.1, 16.1.x <16.1.3.1, 15.1.x <15.1.6.1, 14.1.x <14.1....
Aug 04, 2022
CVSS 6.7
EPSS 0.00
CVE-2022-33947
MEDIUM
BIG-IP <16.1.3,15.1.6.1,14.1.5,13.1.x - Privilege Escalation
Aug 04, 2022
CVSS 5.4
EPSS 0.01
CVE-2022-33203
HIGH
BIG-IP <16.1.3, 15.1.6.1, 14.1.5 - DoS
Aug 04, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-32455
HIGH
BIG-IP 13.1.x-16.1.x - Denial of Service via Client SSL Profile with Session Tickets
Aug 04, 2022
CVSS 7.5
EPSS 0.00
CVE-2022-31473
MEDIUM
BIG-IP <16.1.1, 15.1.4 - Auth Bypass
Aug 04, 2022
CVSS 6.8
EPSS 0.02
CVE-2022-30535
MEDIUM
F5 NGINX Ingress Controller 1.x and 2.x < 2.3.0 - Authenticated Secret Exposure via Ingress Object Manipulation
Aug 04, 2022
CVSS 6.5
EPSS 0.01
CVE-2022-34032
HIGH
Nginx NJS <0.7.5 - Memory Corruption
Jul 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34031
HIGH
Nginx NJS 0.7.5 - Segmentation Violation via njs_value_to_number
Jul 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34030
HIGH
Nginx NJS <0.7.5 - Memory Corruption
Jul 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34029
CRITICAL
Nginx NJS 0.7.4 - Out-of-bounds Read via njs_scope_value
Jul 18, 2022
CVSS 9.1
EPSS 0.01
CVE-2022-34028
HIGH
Nginx NJS v0.7.5 - Segmentation Violation via njs_utf8_next
Jul 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-34027
HIGH
Nginx NJS <0.7.4 - Memory Corruption
Jul 18, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-32414
MEDIUM
Nginx NJS 0.7.2 - Use-After-Free in njs_vmcode_interpreter
Jun 21, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-31307
MEDIUM
Nginx NJS <0.7.2 - Memory Corruption
Jun 21, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-31306
MEDIUM
Nginx NJS <0.7.2 - Memory Corruption
Jun 21, 2022
CVSS 5.5
EPSS 0.01
CVE-2022-29379
CRITICAL
Nginx NJS - Stack Overflow in njs_default_module_loader
May 25, 2022
CVSS 9.8
EPSS 0.02
CVE-2022-29369
HIGH
Nginx NJS <0.7.2 - Memory Corruption
May 12, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-29491
HIGH
F5 BIG-IP LTM, Advanced WAF, ASM, APM < 16.1.2.2, < 15.1.5, < 14.1.4.6 - DoS via DTLS Virtual Server
May 05, 2022
CVSS 7.5
EPSS 0.01
CVE-2022-29480
MEDIUM
F5 BIG-IP 11.6.x 12.1.x < 13.1.5 - Uncontrolled Resource Consumption via big3d Requests
May 05, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-29479
MEDIUM
F5 Big-ip Access Policy Manager - Improper Input Validation
May 05, 2022
CVSS 5.3
EPSS 0.01
CVE-2022-29474
MEDIUM
F5 BIG-IP Directory Traversal in iControl SOAP (Auth Required)
May 05, 2022
CVSS 4.3
EPSS 0.01
CVE-2022-29473
MEDIUM
F5 BIG-IP 15.1.x < 15.1.5.1, 14.1.x < 14.1.4.6, 13.1.x < 13.1.5 - Denial of Service via IPSec ALG Profile
May 05, 2022
CVSS 5.9
EPSS 0.01
Products
big-ip_access_policy_manager 628
big-ip_application_security_manager 581
big-ip_advanced_firewall_manager 552
big-ip_local_traffic_manager 541
big-ip_policy_enforcement_manager 533
big-ip_link_controller 525
big-ip_application_acceleration_manager 524
big-ip_analytics 511
big-ip_global_traffic_manager 490
big-ip_domain_name_system 469
big-ip_fraud_protection_service 405
big-ip_webaccelerator 297
big-ip_edge_gateway 293
big-ip_advanced_web_application_firewall 195
big-ip_websafe 175
big-ip_ddos_hybrid_defender 166
big-ip_ssl_orchestrator 147
big-ip_carrier-grade_nat 109
big-ip_application_visibility_and_reporting 108
big-ip_container_ingress_services 86
big-ip_automation_toolchain 85
big-iq_centralized_management 85
big-ip_protocol_security_module 61
BIG-IP 46
nginx 42
njs 40
enterprise_manager 39
big-ip_wan_optimization_manager 38
traffix_signaling_delivery_controller 31
ssl_orchestrator 27
Quick Filters