f5

1,031 tracked vulnerabilities.

CVE-2020-5925 HIGH
BIG-IP 11.6.1-15.1.0.4 DoS via TMM UDP Traffic Handling
Aug 26, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-5921 HIGH
BIG-IP <15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.6, 13.1.0-13.1.3.4...
Aug 26, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-5924 MEDIUM
BIG-IP APM <12.1.5.1-11.6.5.2 - Memory Corruption
Aug 26, 2020
CVSS 5.3
EPSS 0.01
CVE-2020-5923 MEDIUM
BIG-IP <15.2 - Port-Lockdown Bypass
Aug 26, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-5922 HIGH
BIG-IP 11.6.1-15.1.0.4 - Cross-Site Request Forgery in iControl REST
Aug 26, 2020
CVSS 8.8
EPSS 0.01
CVE-2020-5920 MEDIUM
BIG-IP <15.2 - Blind SQL Injection
Aug 26, 2020
CVSS 4.3
EPSS 0.01
CVE-2020-5919 HIGH
BIG-IP Access Policy Manager 15.1.0-15.1.0.4 - Denial of Service via Modern Customization Session Variable Rendering
Aug 26, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-5918 HIGH
BIG-IP <15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3...
Aug 26, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-5917 MEDIUM
F5 BIG-IP 11.6.1-15.1.0.4 & BIG-IQ 5.2.0-7.0.0 - Weak OpenSSH Host Key Encryption
Aug 26, 2020
CVSS 5.9
EPSS 0.01
CVE-2020-5916 MEDIUM
BIG-IP <15.1.0.4, <15.0.1.3 - Info Disclosure
Aug 26, 2020
CVSS 6.8
EPSS 0.01
CVE-2020-5915 MEDIUM
BIG-IP 11.6.1-15.1.0.4 - Stored XSS in TMUI Page
Aug 26, 2020
CVSS 6.1
EPSS 0.01
CVE-2020-5914 HIGH
BIG-IP ASM - Server Cookie Denial of Service
Aug 26, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-5913 HIGH
BIG-IP <15.1.3.4 - Info Disclosure
Aug 26, 2020
CVSS 7.4
EPSS 0.01
CVE-2020-5912 HIGH
BIG-IP 11.6.1-15.1.0.4 Arbitrary File Write via restjavad Dump Command
Aug 26, 2020
CVSS 7.1
EPSS 0.00
CVE-2020-24349 MEDIUM
njs <= 0.4.3 - Use-After-Free in njs_value_property
Aug 13, 2020
CVSS 5.5
EPSS 0.01
CVE-2020-24348 MEDIUM
njs < 0.4.3 - Out-of-bounds Read in njs_json_stringify_iterator
Aug 13, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-24347 MEDIUM
njs < 0.4.3 - Out-of-bounds Read in njs_lvlhsh_level_find
Aug 13, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-24346 HIGH
njs < 0.4.3 - Use-After-Free in JSON Parser
Aug 13, 2020
CVSS 7.8
EPSS 0.01
CVE-2020-5911 HIGH
NGINX Controller <3.5.0, <2.9.0, <1.0.1 - Info Disclosure
Jul 02, 2020
CVSS 7.3
EPSS 0.01
CVE-2020-5910 HIGH
NGINX Controller - No Auth Required
Jul 02, 2020
CVSS 7.5
EPSS 0.01
CVE-2020-5909 MEDIUM
NGINX Controller <3.5.0, <2.9.0, <1.0.1 - Info Disclosure
Jul 02, 2020
CVSS 5.4
EPSS 0.00
CVE-2020-5908 MEDIUM
BIG-IP APM <12.1.5, <11.6.5.2 - Info Disclosure
Jul 01, 2020
CVSS 5.5
EPSS 0.00
CVE-2020-5907 HIGH
BIG-IP <15.2 - Privilege Escalation
Jul 01, 2020
CVSS 7.2
EPSS 0.01
CVE-2020-5906 HIGH
BIG-IP <13.1.3.3, 12.1.5.2, 11.6.5.2 - Privilege Escalation
Jul 01, 2020
CVSS 8.1
EPSS 0.01
CVE-2020-5905 MEDIUM
BIG-IP 11.6.1-11.6.5.2 - Stored Cross-Site Scripting in WCCP Configuration Page
Jul 01, 2020
CVSS 4.3
EPSS 0.01