f5

1,024 tracked vulnerabilities.

CVE-2018-5507 HIGH
F5 BIG-IP <13.0.0 - Info Disclosure
Apr 13, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-5506 CRITICAL
F5 BIG-IP <13.0.0, 12.1.2, 11.6.1, 11.5.5 - Unauthenticated Bruteforce
Apr 13, 2018
CVSS 9.8
EPSS 0.00
CVE-2018-5509 HIGH
F5 BIG-IP 12.1.0-12.1.3.1 - Denial of Service via Non-TCP Traffic to Misconfigured Virtual Server
Mar 22, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-5505 MEDIUM
F5 BIG-IP Analytics and Application Security Manager 13.1.0-13.1.0.3 - Denial of Service via DNS Profile TCP Processing
Mar 22, 2018
CVSS 5.9
EPSS 0.01
CVE-2018-5504 HIGH
F5 BIG-IP <13.1.0.3, <12.1.3.1 - DoS/Remote Code Execution
Mar 22, 2018
CVSS 8.1
EPSS 0.03
CVE-2018-5503 HIGH
F5 BIG-IP <13.1.0.3, <12.1.3.1 - DoS
Mar 22, 2018
CVSS 7.5
EPSS 0.01
CVE-2018-5502 HIGH
F5 BIG-IP 13.0.0-13.1.0.3 - Denial of Service via Malicious Client Certificate
Mar 22, 2018
CVSS 7.5
EPSS 0.00
CVE-2018-5501 MEDIUM
F5 BIG-IP <13.0.0, 12.1.0-12.1.3.1, 11.6.x, 11.5.x, 11.2.1 - DoS
Mar 01, 2018
CVSS 5.9
EPSS 0.01
CVE-2018-5500 MEDIUM
F5 BIG-IP <13.0.0, 12.1.3.1, 11.6.2 - Memory Corruption
Mar 01, 2018
CVSS 5.9
EPSS 0.01
CVE-2017-20005 CRITICAL
NGINX < 1.13.6 - Buffer Overflow in Autoindex Module via Four-Digit Year Handling
Jun 06, 2021
CVSS 9.8
EPSS 0.03
CVE-2017-6153 MEDIUM
F5 BIG-IP 11.5.1-11.5.5, 11.6.1-11.6.3.1, 12.1.0-12.1.3.1, 13.0.0-13.1.0.3 - Denial of Service via Zip Bomb
Jun 01, 2018
CVSS 5.3
EPSS 0.01
CVE-2017-6158 MEDIUM
F5 BIG-IP <12.1.2 - Info Disclosure
Apr 13, 2018
CVSS 6.5
EPSS 0.01
CVE-2017-6156 MEDIUM
F5 BIG-IP 11.5.1-11.5.5, 11.6.0-11.6.1, 12.1.0-12.1.1 - IPSec Tunnel Disruption and Impersonation
Apr 13, 2018
CVSS 6.4
EPSS 0.00
CVE-2017-6155 HIGH
F5 BIG-IP 11.5.1-11.6.2, 12.0.0-12.1.3.1, 13.0.0 DoS via Malformed SPDY/HTTP/2 Requests
Apr 13, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-6148 HIGH
F5 BIG-IP 11.5.1-11.5.5, 11.6.1-11.6.2, 12.0.0-12.1.3.1, 13.0.0 - Denial of Service via SOCKS Proxy Request Handling
Apr 13, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-6143 MEDIUM
F5 BIG-IP 11.5.0-11.5.5, 11.6.0-11.6.2, 12.0.0-12.1.2 - Improper Certificate Validation in IP Intelligence Subscription
Apr 13, 2018
CVSS 5.4
EPSS 0.00
CVE-2017-6152 MEDIUM
F5 BIG-IQ Centralized Management 5.1.0-5.2.0 - Improper Privilege Management via Access Manager Role
Mar 08, 2018
CVSS 6.7
EPSS 0.00
CVE-2017-6154 HIGH
F5 BIG-IP ASM 11.6.1-11.6.2, 12.1.0-12.1.3.1, 13.0.0 - Denial of Service via bd Daemon Memory Corruption
Mar 01, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-6150 HIGH
F5 BIG-IP 12.1.0-12.1.3.1, 13.0.0 - Denial of Service via Large Fragmented Packets
Mar 01, 2018
CVSS 7.5
EPSS 0.01
CVE-2017-6169 MEDIUM
F5 BIG-IP Policy Enforcement Manager 11.6.0-11.6.2, 12.0.0-12.1.3, 13.0.0 - DoS via Malformed URL
Feb 06, 2018
CVSS 6.8
EPSS 0.01
CVE-2017-6142 MEDIUM
F5 BIG-IP AFM 11.6.0-11.6.2, 12.1.0-12.1.2, 13.0.0 - Improper Certificate Validation
Jan 19, 2018
CVSS 4.8
EPSS 0.00
CVE-2017-18017 CRITICAL
Linux Kernel < 4.11 and 4.9.x < 4.9.36 - Use-After-Free in tcpmss_mangle_packet
Jan 03, 2018
CVSS 9.8
EPSS 0.34
CVE-2017-6167 HIGH
F5 BIG-IP 12.1.0-12.1.2, 13.0.0 - Race Condition in iControl REST
Dec 21, 2017
CVSS 7.5
EPSS 0.00
CVE-2017-6164 HIGH
F5 BIG-IP 13.0.0, 12.0.0-12.1.2, 11.6.0-11.6.1, 11.5.0-11.5.4 - DoS or RCE via Malformed TLS1.2 Records
Dec 21, 2017
CVSS 8.1
EPSS 0.02
CVE-2017-6151 HIGH
F5 BIG-IP - Denial of Service via HTTP/2 Profile
Dec 21, 2017
CVSS 7.5
EPSS 0.00
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV