f5
1,031 tracked vulnerabilities.
CVE-2021-23050
HIGH
BIG-IP Advanced WAF/ASM <16.0.1.2 & 15.1.3 - CSRF
Sep 14, 2021
CVSS 7.5
EPSS 0.00
CVE-2021-23049
HIGH
BIG-IP <16.0.1.2, 15.1.x <15.1.3 - DoS
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23048
HIGH
BIG-IP <16.0.1.2, 15.1.3.1, 14.1.4.3, 13.1.4.1, 12.1.x, 11.6.x - DoS
Sep 14, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23022
HIGH
BIG-IP Edge Client <7.2.1.3 & <7.1.9.9 - Info Disclosure
Jun 10, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-23024
HIGH
BIG-IQ <8.0.0.1,6.x,7.x - Authenticated RCE
Jun 10, 2021
CVSS 7.2
EPSS 0.05
CVE-2021-23023
HIGH
BIG-IP Edge Client <7.2.1.3, 7.1.x <7.1.9.9 - DLL Hijacking
Jun 10, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-23021
MEDIUM
Nginx Controller <3.7.0 - Info Disclosure
Jun 01, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-23020
MEDIUM
F5 NGINX Controller 3.0.0-3.9.9 - Use of Insufficiently Random Values in API Key Generation
Jun 01, 2021
CVSS 5.5
EPSS 0.00
CVE-2021-23019
HIGH
NGINX Controller <3.15.0 - Info Disclosure
Jun 01, 2021
CVSS 7.8
EPSS 0.00
CVE-2021-23017
HIGH
nginx 0.6.18-1.20.0 - Denial of Service via DNS Resolver Off-by-one Error
Jun 01, 2021
CVSS 7.7
EPSS 0.53
CVE-2021-23018
HIGH
NGINX Controller <3.4.0 - Info Disclosure
Jun 01, 2021
CVSS 7.4
EPSS 0.01
CVE-2021-23016
MEDIUM
BIG-IP APM <16.0.x, 12.1.x, 11.6.x - Auth Bypass
May 10, 2021
CVSS 5.3
EPSS 0.01
CVE-2021-23015
HIGH
F5 BIG-IP 13.1.0-13.1.3.6, 14.1.0-14.1.4.1, 15.1.0-15.1.2.1, 16.0.x - Auth Bypass via iControl REST
May 10, 2021
CVSS 7.2
EPSS 0.01
CVE-2021-23014
HIGH
BIG-IP <16.0.1.1, <15.1.3, <14.1.4 - Auth Bypass
May 10, 2021
CVSS 8.8
EPSS 0.01
CVE-2021-23012
HIGH
BIG-IP 13.1.0-13.1.3, 14.1.0-14.1.3, 15.1.0-15.1.2, 16.0.0-16.0.1 - OS Command Injection via System Support
May 10, 2021
CVSS 8.2
EPSS 0.00
CVE-2021-23010
HIGH
BIG-IP ASM/Advanced WAF <16.0.1.1, 15.1.2, 14.1.3.1, 13.1.3.5, 12.1...
May 10, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23009
HIGH
BIG-IP 15.1.0-15.1.2 - Denial of Service via Malformed HTTP/2 Request
May 10, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23013
HIGH
BIG-IP <16.0.1.1, 15.1.x <15.1.3, 14.1.x <14.1.4, 13.1.x <13.1.3.6,...
May 10, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23011
HIGH
BIG-IP <16.0.1.1, 15.1.3, 14.1.4, 13.1.4, 12.1.6, 11.6.5.3 - DoS
May 10, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23008
CRITICAL
BIG-IP APM <15.1.3,14.1.4,13.1.4,12.1.6,16.0.x,11.6.x - Auth Bypass
May 10, 2021
CVSS 9.8
EPSS 0.01
CVE-2021-23007
MEDIUM
BIG-IP 14.1.4 and 16.0.1.1 - Denial of Service via Fragmented IP Traffic Handling
Mar 31, 2021
CVSS 5.3
EPSS 0.02
CVE-2021-23006
MEDIUM
F5 BIG-IQ Centralized Management 6.0.0-7.x - Reflected Cross-Site Scripting
Mar 31, 2021
CVSS 6.1
EPSS 0.01
CVE-2021-23005
CRITICAL
F5 BIG-IQ Centralized Management 6.x-7.x - Unencrypted Corosync Protocol Usage in Quorum Device HA
Mar 31, 2021
CVSS 9.1
EPSS 0.01
CVE-2021-23004
HIGH
BIG-IP <16.0.1.1, 15.1.x <15.1.2, 14.1.x <14.1.3.1, 13.1.x <13.1.3....
Mar 31, 2021
CVSS 7.5
EPSS 0.01
CVE-2021-23003
HIGH
BIG-IP <16.0.1.1, 15.1.x <15.1.2, 14.1.x <14.1.3.1, 13.1.x <13.1.3....
Mar 31, 2021
CVSS 7.5
EPSS 0.01
Products
big-ip_access_policy_manager 628
big-ip_application_security_manager 581
big-ip_advanced_firewall_manager 552
big-ip_local_traffic_manager 541
big-ip_policy_enforcement_manager 533
big-ip_link_controller 525
big-ip_application_acceleration_manager 524
big-ip_analytics 511
big-ip_global_traffic_manager 490
big-ip_domain_name_system 469
big-ip_fraud_protection_service 405
big-ip_webaccelerator 297
big-ip_edge_gateway 293
big-ip_advanced_web_application_firewall 195
big-ip_websafe 175
big-ip_ddos_hybrid_defender 166
big-ip_ssl_orchestrator 147
big-ip_carrier-grade_nat 109
big-ip_application_visibility_and_reporting 108
big-ip_container_ingress_services 86
big-ip_automation_toolchain 85
big-iq_centralized_management 85
big-ip_protocol_security_module 61
BIG-IP 46
nginx 42
njs 40
enterprise_manager 39
big-ip_wan_optimization_manager 38
traffix_signaling_delivery_controller 31
ssl_orchestrator 27
Quick Filters