f5

1,024 tracked vulnerabilities.

CVE-2021-23039 HIGH
F5 BIG-IP 12.1.0-12.1.5, 13.1.x, 14.1.0-14.1.2.7, 15.1.0-15.1.2, 16.0.0-16.0.1.1 - Denial of Service via IPSec Request
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23038 CRITICAL
BIG-IP <16.0.1.2, 15.1.3.1, 14.1.4.2, 13.1.4.1, 12.1.x - XSS
Sep 14, 2021
CVSS 9.0
EPSS 0.00
CVE-2021-23037 CRITICAL
F5 BIG-IP 11.6.0-11.6.4 - Reflected Cross-Site Scripting in Configuration Utility
Sep 14, 2021
CVSS 9.6
EPSS 0.01
CVE-2021-23035 HIGH
F5 BIG-IP 14.1.0-14.1.4.3 - Denial of Service via Chunked HTTP Responses
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23034 HIGH
BIG-IP <16.1.0, 15.1.x <15.1.3.1 - DoS
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23033 HIGH
F5 Big-ip Advanced Web Application Firewall < 12.1.6 - Improper Input Validation
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23032 HIGH
F5 Big-ip Domain Name System < 12.1.6 - Improper Input Validation
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23045 HIGH
BIG-IP <16.0.1.2, 15.1.3.1, 14.1.4.3, 13.1.4.1, 12.1.x - DoS
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23044 HIGH
F5 Big-ip Access Policy Manager < 11.6.5 - Improper Input Validation
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23046 MEDIUM
Guided Configuration <8.0.0 - Info Disclosure
Sep 14, 2021
CVSS 4.9
EPSS 0.00
CVE-2021-23043 MEDIUM
BIG-IP 11.6.0-11.6.4 - Path Traversal in Configuration Utility
Sep 14, 2021
CVSS 6.5
EPSS 0.00
CVE-2021-23042 HIGH
BIG-IP 12.1.0-12.1.5 - Uncontrolled Resource Consumption via HTTP Profile
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23040 HIGH
BIG-IP AFM 12.1.0-12.1.5 - SQL Injection in Configuration Utility
Sep 14, 2021
CVSS 8.8
EPSS 0.00
CVE-2021-23047 MEDIUM
F5 BIG-IP Access Policy Manager 11.6.1-11.6.4 - Uncontrolled Resource Consumption via OCSP AIA Verification
Sep 14, 2021
CVSS 5.3
EPSS 0.00
CVE-2021-23041 MEDIUM
BIG-IP 12.1.x-16.0.x - DOM-Based Cross-Site Scripting in Configuration Utility
Sep 14, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-23053 MEDIUM
BIG-IP Advanced WAF/ASM <15.1.3, 14.1.3.1, 13.1.3.6 - Info Disclosure
Sep 14, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-23052 MEDIUM
BIG-IP <14.1.4.4, 13.1.x - Open Redirect
Sep 14, 2021
CVSS 6.1
EPSS 0.00
CVE-2021-23051 HIGH
F5 BIG-IP 15.1.0.4-15.1.3 - Denial of Service via DPDK/ENA Driver Request Handling
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23050 HIGH
BIG-IP Advanced WAF/ASM <16.0.1.2 & 15.1.3 - CSRF
Sep 14, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-23049 HIGH
BIG-IP <16.0.1.2, 15.1.x <15.1.3 - DoS
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23048 HIGH
BIG-IP <16.0.1.2, 15.1.3.1, 14.1.4.3, 13.1.4.1, 12.1.x, 11.6.x - DoS
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23022 HIGH
BIG-IP Edge Client <7.2.1.3 & <7.1.9.9 - Info Disclosure
Jun 10, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-23024 HIGH
BIG-IQ <8.0.0.1,6.x,7.x - Authenticated RCE
Jun 10, 2021
CVSS 7.2
EPSS 0.05
CVE-2021-23023 HIGH
BIG-IP Edge Client <7.2.1.3, 7.1.x <7.1.9.9 - DLL Hijacking
Jun 10, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-23021 MEDIUM
Nginx Controller <3.7.0 - Info Disclosure
Jun 01, 2021
CVSS 5.5
EPSS 0.00
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV