f5
1,031 tracked vulnerabilities.
CVE-2019-6631
HIGH
BIG-IP 11.5.2-11.6.3 - Denial of Service via iRules HTTP Header Manipulation
Jul 03, 2019
CVSS 7.5
EPSS 0.03
CVE-2019-6630
HIGH
F5 SSL Orchestrator <14.1.0.6 - DoS
Jul 03, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6629
HIGH
F5 BIG-IP 14.1.0-14.1.0.5 - Denial of Service via SSL Traffic with Session Tickets and DHE Cipher Suites
Jul 03, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6628
HIGH
BIG-IP PEM <14.1.0.6 - Use After Free
Jul 03, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6627
MEDIUM
F5 SSL Orchestrator 14.1.0-14.1.0.5 - Denial of Service via Race Condition in SSL Forward Proxy Bypass
Jul 03, 2019
CVSS 5.9
EPSS 0.01
CVE-2019-6626
MEDIUM
BIG-IP (AFM, Analytics, ASM) 11.5.1-11.6.3.4 - Reflected Cross-Site Scripting in TMUI
Jul 03, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-6625
MEDIUM
BIG-IP 11.5.1-11.6.4 - Reflected Cross-Site Scripting in TMUI
Jul 03, 2019
CVSS 6.1
EPSS 0.01
CVE-2019-6623
HIGH
BIG-IP 12.1.0-12.1.4 - Denial of Service via iSession Traffic
Jul 02, 2019
CVSS 7.5
EPSS 0.03
CVE-2019-6624
HIGH
BIG-IP 12.1.0-12.1.4, 13.0.0-13.1.1.4, 14.0.0-14.0.0.4, 14.1.0-14.1.0.5 - Denial of Service via UDP Virtual Server
Jul 02, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6622
HIGH
BIG-IP 11.5.1-14.1.0.5 Authenticated Command Injection via iControl REST
Jul 02, 2019
CVSS 7.2
EPSS 0.02
CVE-2019-6621
HIGH
BIG-IP 11.5.2-11.5.8 and BIG-IQ 5.1.0-7.1.0.2 - Authenticated OS Command Injection via iControl REST Worker
Jul 02, 2019
CVSS 7.2
EPSS 0.02
CVE-2019-6620
HIGH
F5 BIG-IP 11.5.2-11.6.4 - Authenticated OS Command Injection via iControl REST Worker
Jul 02, 2019
CVSS 7.2
EPSS 0.02
CVE-2019-6642
HIGH
BIG-IP <15.0.0 - Privilege Escalation
Jul 01, 2019
CVSS 8.8
EPSS 0.02
CVE-2019-13135
HIGH
ImageMagick < 6.9.10-50 - Use of Uninitialized Resource in ReadCUTImage
Jul 01, 2019
CVSS 8.8
EPSS 0.03
CVE-2019-13067
CRITICAL
njs < 0.3.3 - Out-of-bounds Read in nxt_utf8_decode
Jun 30, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-13050
HIGH
GnuPG < 2.2.16 - Denial of Service via SKS Keyserver Certificate Spamming
Jun 29, 2019
CVSS 7.5
EPSS 0.03
CVE-2019-11479
HIGH
Linux Kernel 4.4-4.4.182 - Denial of Service via TCP MSS Fragmentation
Jun 19, 2019
CVSS 7.5
EPSS 0.92
CVE-2019-11478
MEDIUM
Linux kernel <4.4.182, <4.9.182, <4.14.127, <4.19.52, <5.1.11 - DoS
Jun 19, 2019
CVSS 5.3
EPSS 0.95
CVE-2019-11477
HIGH
Linux Kernel 2.6.29-3.16.69 - Denial of Service via TCP SACK Integer Overflow
Jun 19, 2019
CVSS 7.5
EPSS 0.99
CVE-2019-5436
HIGH
libcurl 7.19.4-7.64.1 - Heap-based Buffer Overflow in TFTP Receiving Code
May 28, 2019
CVSS 7.8
EPSS 0.50
CVE-2019-12295
HIGH
Wireshark <3.0.1, <2.6.8, <2.4.14 - DoS
May 23, 2019
CVSS 7.5
EPSS 0.04
CVE-2019-12208
CRITICAL
njs < 0.3.1 - Heap-Based Buffer Overflow in njs_function_native_call
May 20, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-12207
CRITICAL
njs < 0.3.1 - Heap-Based Buffer Over-Read in nxt_utf8_decode
May 20, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-12206
CRITICAL
njs < 0.3.1 - Heap-Based Buffer Overflow in nxt_utf8_encode
May 20, 2019
CVSS 9.8
EPSS 0.02
CVE-2019-11839
CRITICAL
njs < 0.3.1 - Heap-Based Buffer Overflow in Array.prototype.push
May 09, 2019
CVSS 9.8
EPSS 0.02
Products
big-ip_access_policy_manager 628
big-ip_application_security_manager 581
big-ip_advanced_firewall_manager 552
big-ip_local_traffic_manager 541
big-ip_policy_enforcement_manager 533
big-ip_link_controller 525
big-ip_application_acceleration_manager 524
big-ip_analytics 511
big-ip_global_traffic_manager 490
big-ip_domain_name_system 469
big-ip_fraud_protection_service 405
big-ip_webaccelerator 297
big-ip_edge_gateway 293
big-ip_advanced_web_application_firewall 195
big-ip_websafe 175
big-ip_ddos_hybrid_defender 166
big-ip_ssl_orchestrator 147
big-ip_carrier-grade_nat 109
big-ip_application_visibility_and_reporting 108
big-ip_container_ingress_services 86
big-ip_automation_toolchain 85
big-iq_centralized_management 85
big-ip_protocol_security_module 61
BIG-IP 46
nginx 42
njs 40
enterprise_manager 39
big-ip_wan_optimization_manager 38
traffix_signaling_delivery_controller 31
ssl_orchestrator 27
Quick Filters