f5
1,031 tracked vulnerabilities.
CVE-2014-6031
MEDIUM
F5 BIG-IP LTM 10.x-11.6.0 Authenticated DoS via mcpq Daemon Buffer Overflow
Jun 08, 2017
CVSS 4.9
EPSS 0.01
CVE-2014-9326
F5 BIG-IP <11.6.0 - Man-in-the-middle
May 12, 2015
EPSS 0.01
CVE-2014-3556
F5 NGINX 1.5.6-1.6.0 - Plaintext Command Injection via STARTTLS SMTP Proxy
Dec 29, 2014
EPSS 0.08
CVE-2014-8730
F5 BIG-IP 10.0.0-10.2.4, 11.0.0-11.5.1 - CBC Padding Oracle Attack
Dec 10, 2014
EPSS 0.14
CVE-2014-9342
F5 BIG-IP 11.3.0 - Cross-Site Scripting in ASM Tree View
Dec 08, 2014
EPSS 0.02
CVE-2014-3616
nginx 0.5.6-1.7.4 - Insufficient Session Expiration via Shared SSL Session Cache
Dec 08, 2014
EPSS 0.06
CVE-2014-8727
F5 BIG-IP Local Traffic Manager < 10.2.1 - Authenticated Path Traversal via Archive Properties or Form Name Parameter
Nov 17, 2014
EPSS 0.01
CVE-2014-6032
F5 BIG-IP - Authenticated XML External Entity Injection via Configuration Utility
Nov 01, 2014
EPSS 0.03
CVE-2014-4023
F5 BIG-IP - Reflected Cross-Site Scripting in Configuration Utility
Oct 28, 2014
EPSS 0.02
CVE-2014-2927
F5 Arx - Authentication Bypass
Oct 15, 2014
EPSS 0.08
CVE-2014-7169
CRITICAL
KEV
GNU Bash < 4.3 - Remote Code Execution via Malformed Environment Variable Function Definitions
Sep 25, 2014
CVSS 9.8
EPSS 1.00
CVE-2014-6271
CRITICAL
KEVNUCLEI
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
Sep 24, 2014
CVSS 9.8
EPSS 1.00
CVE-2014-4027
Linux kernel <3.14 - Info Disclosure
Jun 23, 2014
EPSS 0.01
CVE-2014-2949
F5 ARX Data Manager 3.0.0-3.1.0 - Authenticated SQL Injection
Jun 18, 2014
EPSS 0.01
CVE-2014-3468
GNU Libtasn1 < 3.6 - Out-of-Bounds Access via Negative Bit Length in ASN.1 Data
Jun 05, 2014
EPSS 0.04
CVE-2014-3467
GNU Libtasn1 < 3.6 - Denial of Service via Crafted ASN.1 Data
Jun 05, 2014
EPSS 0.07
CVE-2014-3959
F5 BIG-IP 11.2.1-11.5.1 - Cross-Site Scripting via list.jsp
Jun 03, 2014
EPSS 0.02
CVE-2014-2928
F5 BIG-IP - Remote Code Execution via iControl API Hostname Element
May 12, 2014
EPSS 0.39
CVE-2014-0196
MEDIUM
KEV
Linux Kernel < 3.14.3 - Denial of Service and Privilege Escalation via Race Condition in n_tty_write
May 07, 2014
CVSS 5.5
EPSS 0.22
CVE-2014-3220
F5 BIG-IQ Cloud and Security 4.0.0-4.1.0 - Authenticated Arbitrary Password Change via User Name Parameter
May 05, 2014
EPSS 0.11
CVE-2014-0088
nginx 1.5.10 - Remote Code Execution via SPDY Request Handling
Apr 29, 2014
EPSS 0.09
CVE-2014-0133
nginx <1.4.7, <1.5.12 - Buffer Overflow
Mar 28, 2014
EPSS 0.09
CVE-2014-0101
Linux Kernel 2.6.24-3.13.6 - Denial of Service via SCTP Handshake with Modified INIT and Crafted AUTH Chunks
Mar 11, 2014
EPSS 0.07
CVE-2013-3587
MEDIUM
F5 BIG-IP - Exposure of Sensitive Information via BREACH Attack
Feb 21, 2020
CVSS 5.9
EPSS 0.06
CVE-2013-7408
F5 BIG-IP Analytics <11.4.0 - Info Disclosure
Oct 26, 2014
EPSS 0.02
Products
big-ip_access_policy_manager 628
big-ip_application_security_manager 581
big-ip_advanced_firewall_manager 552
big-ip_local_traffic_manager 541
big-ip_policy_enforcement_manager 533
big-ip_link_controller 525
big-ip_application_acceleration_manager 524
big-ip_analytics 511
big-ip_global_traffic_manager 490
big-ip_domain_name_system 469
big-ip_fraud_protection_service 405
big-ip_webaccelerator 297
big-ip_edge_gateway 293
big-ip_advanced_web_application_firewall 195
big-ip_websafe 175
big-ip_ddos_hybrid_defender 166
big-ip_ssl_orchestrator 147
big-ip_carrier-grade_nat 109
big-ip_application_visibility_and_reporting 108
big-ip_container_ingress_services 86
big-ip_automation_toolchain 85
big-iq_centralized_management 85
big-ip_protocol_security_module 61
BIG-IP 46
nginx 42
njs 40
enterprise_manager 39
big-ip_wan_optimization_manager 38
traffix_signaling_delivery_controller 31
ssl_orchestrator 27
Quick Filters