f5

1,024 tracked vulnerabilities.

CVE-2019-6615 MEDIUM
BIG-IP <14.1.0.1 - Privilege Escalation
May 03, 2019
CVSS 4.9
EPSS 0.00
CVE-2019-6614 MEDIUM
BIG-IP <14.2 - Privilege Escalation
May 03, 2019
CVSS 6.5
EPSS 0.00
CVE-2019-6613 MEDIUM
BIG-IP 11.5.2-11.5.8, 11.6.1-11.6.3.4, 12.1.0-12.1.4, 13.0.0-13.1.1.4 - SNMPv2 Cleartext Transmission
May 03, 2019
CVSS 5.3
EPSS 0.00
CVE-2019-6612 HIGH
BIG-IP <14.1.0.1, <13.1.1.4, <12.1.4, <11.6.3.4, <11.5.8 - DoS
May 03, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6611 HIGH
BIG-IP <14.1.0.1, 13.1.1.4, 12.1.4, 11.6.3.4, 11.5.8 - Logic Error
May 03, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6609 CRITICAL
BIG-IP 12.1.1-12.1.4, 13.0.0-13.1.1.3, 14.0.0-14.1.0.1 - Insufficiently Protected Credentials
Apr 15, 2019
CVSS 9.8
EPSS 0.00
CVE-2019-6610 HIGH
BIG-IP APM 11.5.1-11.5.8, 11.6.0-11.6.3.4, 12.1.0-12.1.4, 13.0.0-13.1.1.1, 14.0.0-14.0.0.4 DoS via URL Classification
Apr 11, 2019
CVSS 8.6
EPSS 0.00
CVE-2019-6608 MEDIUM
BIG-IP 11.5.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.1.1.1, 14.0.0-14.0.0.2 - Use-After-Free in SNMP Daemon
Mar 28, 2019
CVSS 5.9
EPSS 0.01
CVE-2019-6607 MEDIUM
BIG-IP ASM Stored XSS in ASM Violation View
Mar 28, 2019
CVSS 6.8
EPSS 0.00
CVE-2019-6606 MEDIUM
F5 BIG-IP Memory Leak via SNMP Request with Request-ID 0
Mar 28, 2019
CVSS 4.3
EPSS 0.00
CVE-2019-6605 HIGH
BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.0.x - Denial of Service via SSL Packet Processing
Mar 28, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6604 MEDIUM
F5 BIG-IP DoS in High-Speed Bridge (11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3.6, 13.0.0-13.1.1.1, 14.0.0-14.0.0.2)
Mar 28, 2019
CVSS 6.8
EPSS 0.01
CVE-2019-6603 HIGH
BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3, 12.1.0-12.1.3, 13.0.0-13.0.1 - Denial of Service via Malformed TCP Packets
Mar 28, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6602 HIGH
BIG-IP 11.5.1-11.5.8 and 11.6.1-11.6.3 - Observable Discrepancy in Configuration Utility Login Page
Mar 28, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-6601 MEDIUM
F5 BIG-IP AAM 11.5.1-11.5.8, 11.6.1-11.6.3.2, 12.1.0-12.1.3.7, 13.0.0 - Privilege Escalation in wamd
Mar 13, 2019
CVSS 5.5
EPSS 0.00
CVE-2019-6600 MEDIUM
BIG-IP 11.5.1-11.5.8, 11.6.1-11.6.3.2, 12.1.0-12.1.3.7, 13.0.0-13.1.1.3, 14.0.0-14.0.0.2 - Reflected XSS via Login Page
Mar 13, 2019
CVSS 6.1
EPSS 0.00
CVE-2019-6599 MEDIUM
BIG-IP 11.5.1-11.5.8 - Cross-Site Scripting in Configuration Utility
Mar 13, 2019
CVSS 6.1
EPSS 0.00
CVE-2019-6598 MEDIUM
BIG-IP <14.0.0.2, 13.1.0.7, 12.1.3.5, 11.6.3.2, 11.5.8 - DoS
Mar 13, 2019
CVSS 4.3
EPSS 0.00
CVE-2019-6597 HIGH
BIG-IP <13.2 - Privilege Escalation
Mar 13, 2019
CVSS 7.2
EPSS 0.00
CVE-2019-6596 HIGH
BIG-IP <14.0.0.2, 13.1.1.1, 12.1.3.6, 11.6.3.2, 11.5.8 - Memory Cor...
Mar 13, 2019
CVSS 7.5
EPSS 0.01
CVE-2019-1559 MEDIUM
OpenSSL 1.0.2-1.0.2q - Padding Oracle via SSL_shutdown Double Call
Feb 27, 2019
CVSS 5.9
EPSS 0.05
CVE-2019-6595 MEDIUM
F5 BIG-IP Access Policy Manager 11.5.1-11.6.2 - Cross-Site Scripting in Admin Web UI
Feb 26, 2019
CVSS 6.1
EPSS 0.00
CVE-2019-6594 MEDIUM
BIG-IP 11.5.1-11.6.3.2, 12.1.3.4-12.1.3.7, 13.0.0 HF1-13.1.1.1, 14.0.0-14.0.0.2 - DoS via MPTCP DATA_FIN
Feb 26, 2019
CVSS 5.9
EPSS 0.01
CVE-2019-6593 MEDIUM
BIG-IP 11.5.1-11.5.4, 11.6.1, 12.1.0 - Chosen Ciphertext Attack via CBC Ciphers
Feb 26, 2019
CVSS 5.9
EPSS 0.00
CVE-2019-6592 CRITICAL
F5 BIG-IP 14.1.0 - Denial of Service via SSL Certificate Validation
Feb 26, 2019
CVSS 9.1
EPSS 0.00
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV