Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / f5

f5

1,024 tracked vulnerabilities.

CVE-2021-23020 MEDIUM

F5 NGINX Controller 3.0.0-3.9.9 - Use of Insufficiently Random Values in API Key Generation

CVE-2021-23019 HIGH

NGINX Controller <3.15.0 - Info Disclosure

CVE-2021-23017 HIGH

nginx 0.6.18-1.20.0 - Denial of Service via DNS Resolver Off-by-one Error

CVE-2021-23018 HIGH

NGINX Controller <3.4.0 - Info Disclosure

CVE-2021-23016 MEDIUM

BIG-IP APM <16.0.x, 12.1.x, 11.6.x - Auth Bypass

CVE-2021-23015 HIGH

F5 BIG-IP 13.1.0-13.1.3.6, 14.1.0-14.1.4.1, 15.1.0-15.1.2.1, 16.0.x - Auth Bypass via iControl REST

CVE-2021-23014 HIGH

BIG-IP <16.0.1.1, <15.1.3, <14.1.4 - Auth Bypass

CVE-2021-23012 HIGH

BIG-IP 13.1.0-13.1.3, 14.1.0-14.1.3, 15.1.0-15.1.2, 16.0.0-16.0.1 - OS Command Injection via System Support

CVE-2021-23010 HIGH

BIG-IP ASM/Advanced WAF <16.0.1.1, 15.1.2, 14.1.3.1, 13.1.3.5, 12.1...

CVE-2021-23009 HIGH

BIG-IP 15.1.0-15.1.2 - Denial of Service via Malformed HTTP/2 Request

CVE-2021-23013 HIGH

BIG-IP <16.0.1.1, 15.1.x <15.1.3, 14.1.x <14.1.4, 13.1.x <13.1.3.6,...

CVE-2021-23011 HIGH

BIG-IP <16.0.1.1, 15.1.3, 14.1.4, 13.1.4, 12.1.6, 11.6.5.3 - DoS

CVE-2021-23008 CRITICAL

BIG-IP APM <15.1.3,14.1.4,13.1.4,12.1.6,16.0.x,11.6.x - Auth Bypass

CVE-2021-23007 MEDIUM

BIG-IP 14.1.4 and 16.0.1.1 - Denial of Service via Fragmented IP Traffic Handling

CVE-2021-23006 MEDIUM

F5 BIG-IQ Centralized Management 6.0.0-7.x - Reflected Cross-Site Scripting

CVE-2021-23005 CRITICAL

F5 BIG-IQ Centralized Management 6.x-7.x - Unencrypted Corosync Protocol Usage in Quorum Device HA

CVE-2021-23004 HIGH

BIG-IP <16.0.1.1, 15.1.x <15.1.2, 14.1.x <14.1.3.1, 13.1.x <13.1.3....

CVE-2021-23003 HIGH

BIG-IP <16.0.1.1, 15.1.x <15.1.2, 14.1.x <14.1.3.1, 13.1.x <13.1.3....

CVE-2021-23002 MEDIUM

BIG-IP APM <16.0.1.1, <15.1.2.1, <14.1.4, <13.1.3.6, <=12.1.x, <=11...

CVE-2021-23001 MEDIUM

BIG-IP Advanced WAF and ASM 11.6.1-11.6.5.2 - Authenticated Unrestricted File Upload via iControl REST Endpoint

CVE-2021-23000 HIGH

F5 BIG-IP 13.1.3.4-13.1.3.6 - Denial of Service via Malicious HTTP Request Sequence

CVE-2021-22999 HIGH

F5 BIG-IP 14.1.0-14.1.3 - Denial of Service via HTTP/2 to HTTP/1.x Connection Handling

CVE-2021-22998 MEDIUM

BIG-IP <16.0.1.1, 15.1.2.1, 14.1.4, 13.1.3.6, 12.1.5.3, 11.6.5.3 - DoS

CVE-2021-22997 HIGH

F5 BIG-IQ Centralized Management 6.0.0-7.x - Unauthenticated ElasticSearch Transport Service Access

CVE-2021-22996 HIGH

F5 BIG-IQ Centralized Management 7.x < 8.0.0 - Denial of Service via Corosync Process Abort

Previous Page 18 of 41 Next

Products

big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy