f5

1,024 tracked vulnerabilities.

CVE-2017-7529 HIGH
nginx 0.5.6-1.13.2 - Integer Overflow in Range Filter Module
Jul 13, 2017
CVSS 7.5
EPSS 0.92
CVE-2017-6131 CRITICAL
F5 BIG-IP 12.0.0-12.1.2 and 13.0.0 - Use of Hard-coded Credentials in Azure Instance Administrative Account
May 23, 2017
CVSS 9.8
EPSS 0.01
CVE-2017-6137 MEDIUM
F5 BIG-IP 11.6.1 HF1, 12.0.0 HF3/HF4, 12.1.0-12.1.2 DoS via Traffic Pattern Disruption
May 09, 2017
CVSS 5.9
EPSS 0.01
CVE-2017-0302 MEDIUM
F5 BIG-IP APM 12.0.0-12.1.2 and 13.0.0 - Authenticated Denial of Service via Short URL Request
May 09, 2017
CVSS 5.3
EPSS 0.00
CVE-2017-6128 HIGH
F5 BIG-IP Local Traffic Manager - Denial of Service in sshd
May 01, 2017
CVSS 7.5
EPSS 0.01
CVE-2017-6130 HIGH
F5 SSL Intercept iApp 1.5.0-1.5.7 and SSL Orchestrator 2.0 - Server-Side Request Forgery via Dynamic Domain Bypass
Apr 06, 2017
CVSS 7.4
EPSS 0.00
CVE-2017-0305 CRITICAL
F5 SSL Intercept iApp 1.5.0-1.5.7 - Unauthenticated Remote Command Execution via Explicit Proxy with SNAT Auto Map
Apr 06, 2017
CVSS 9.8
EPSS 0.03
CVE-2016-5236 MEDIUM
F5 WebSafe Alert Server <= 3.9.5 - Authenticated Stored Cross-Site Scripting via User Account Creation
Jul 01, 2019
CVSS 5.4
EPSS 0.00
CVE-2016-5235 MEDIUM
F5 WebSafe Alert Server < 4.0.0 - Unauthenticated Cross-Site Scripting via Crafted Alert
Jul 01, 2019
CVSS 6.1
EPSS 0.00
CVE-2016-7475 HIGH
BIG-IP 11.4.0-11.6.1 - Denial of Service via SPDY/HTTP2 Connection Handling
Oct 08, 2018
CVSS 7.5
EPSS 0.01
CVE-2016-7472 HIGH
F5 BIG-IP ASM 12.1.0-12.1.1 - Denial of Service via Crafted HTTP Request
Apr 03, 2018
CVSS 7.5
EPSS 0.09
CVE-2016-7469 MEDIUM
BIG-IP LTM 11.2.1-12.1.2 - Authenticated Stored Cross-Site Scripting in Configuration Utility Device Name Change Page
Jun 09, 2017
CVSS 5.4
EPSS 0.00
CVE-2016-7476 HIGH
F5 BIG-IP TMM - Denial of Service via Crafted TCP Packet
May 11, 2017
CVSS 7.5
EPSS 0.01
CVE-2016-9250 HIGH
F5 BIG-IP 11.2.1, 11.4.0-11.6.1, 12.0.0-12.1.2 - Unauthenticated Arbitrary File Deletion
May 10, 2017
CVSS 7.5
EPSS 0.01
CVE-2016-9257 MEDIUM
F5 BIG-IP APM 12.0.0-12.1.2 - Unauthenticated Stored Cross-Site Scripting in Access System Logs
May 09, 2017
CVSS 6.1
EPSS 0.00
CVE-2016-9256 HIGH
F5 BIG-IP 12.1.0-12.1.2 - Info Disclosure
May 09, 2017
CVSS 7.5
EPSS 0.00
CVE-2016-9253 HIGH
F5 BIG-IP 12.1.0-12.1.2 - Denial of Service via WebSocket Traffic
May 09, 2017
CVSS 7.5
EPSS 0.01
CVE-2016-9251 HIGH
F5 BIG-IP <12.1.2 - Privilege Escalation
May 09, 2017
CVSS 8.8
EPSS 0.00
CVE-2016-7467 MEDIUM
F5 BIG-IP APM 12.0.0-12.1.1, 11.6.0-11.6.1 HF1, 11.5.4-11.5.4 HF2 - DoS via Malformed SAML Auth Request
Apr 11, 2017
CVSS 5.3
EPSS 0.02
CVE-2016-9252 HIGH
F5 BIG-IP <11.5.4 HF3, 11.6.x <11.6.1 HF2, 12.x <12.1.2 - DoS
Mar 27, 2017
CVSS 7.5
EPSS 0.01
CVE-2016-7474 MEDIUM
F5 BIG-IP LTM/AAM Sensitive Information Exposure via MCPD Cache
Mar 27, 2017
CVSS 5.5
EPSS 0.00
CVE-2016-7468 MEDIUM
F5 BIG-IP 11.4.1-11.5.4 - Unauthenticated Denial of Service via Malicious Network Traffic
Mar 23, 2017
CVSS 5.9
EPSS 0.01
CVE-2016-9245 MEDIUM
F5 BIG-IP 12.1.0-12.1.2 - Denial of Service via Malicious HTTP Requests
Mar 07, 2017
CVSS 5.9
EPSS 0.01
CVE-2016-6249 MEDIUM
F5 BIG-IP <12.0.0, 11.6.1 - Info Disclosure
Feb 20, 2017
CVSS 5.3
EPSS 0.00
CVE-2016-9244 HIGH
BIG-IP Local Traffic Manager - Exposure of Sensitive Information via Session Tickets
Feb 09, 2017
CVSS 7.5
EPSS 0.67
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV