f5
1,031 tracked vulnerabilities.
CVE-2025-55670
MEDIUM
F5 BIG-IP Next CNF SPK and Kubernetes - Denial of Service via Repeated Undisclosed API Calls
Oct 15, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-55669
HIGH
BIG-IP ASM 16.1.0-16.1.5 - Denial of Service via HTTP/2 Traffic
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-55036
HIGH
BIG-IP SSL Orchestrator - Memory Corruption
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-54858
HIGH
F5 BIG-IP Advanced WAF and ASM 15.1.0-15.1.10.7 - Denial of Service via Malformed JSON Schema
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-54854
HIGH
BIG-IP APM 15.1.0-15.1.10.8 - Out-of-bounds Read in OAuth Access Profile
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-54805
MEDIUM
F5 BIG-IP Next 1.1.0-1.4.1 & Service Proxy for Kubernetes 1.7.0-1.9.2 - Use-After-Free in iRule API
Oct 15, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-54755
MEDIUM
F5 BIG-IP 15.1.0-15.1.10.8 - Authenticated Path Traversal in TMUI
Oct 15, 2025
CVSS 4.9
EPSS 0.01
CVE-2025-54479
HIGH
F5 BIG-IP Next Cloud-Native Network Functions 1.1.0-1.3.9 - Denial of Service via Classification Profile Configuration
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53868
HIGH
F5 BIG-IP 15.1.0-15.1.10.8 - Authenticated Appliance Mode Restriction Bypass via SCP/SFTP Commands
Oct 15, 2025
CVSS 8.7
EPSS 0.00
CVE-2025-53856
HIGH
F5 BIG-IP 15.1.0-15.1.10.8 - Denial of Service via ePVA Traffic Handling
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-53521
CRITICAL
KEV
F5 BIG-IP Access Policy Manager 15.1.0-15.1.10.8 - Remote Code Execution via Malicious Traffic
Oct 15, 2025
CVSS 9.8
EPSS 0.02
CVE-2025-53474
HIGH
F5 BIG-IP ILX::call - TMM Denial of Service
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-48008
HIGH
F5 BIG-IP - Denial of Service via MPTCP Traffic Handling
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-47150
MEDIUM
F5OS-A 1.5.1-1.5.3 and F5OS-C 1.6.0-1.6.4 - Memory Leak via SNMP Requests
Oct 15, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-47148
MEDIUM
F5 BIG-IP APM/SSL Orchestrator 15.1.0-15.1.10.8 Memory Exhaustion via SAML SLO
Oct 15, 2025
CVSS 6.5
EPSS 0.00
CVE-2025-46706
HIGH
F5 F5 BIG-IP 16.1.0 through 16.1.6 - Memory Resource Exhaustion via iRule HTTP::respond
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-41430
HIGH
F5 BIG-IP SSL Orchestrator >=15.1.0 <15.1.9 - Denial of Service via Traffic Management Microkernel Termination
Oct 15, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-54809
HIGH
F5 Access for Android 3.1.0-3.1.1 - Improper Certificate Validation
Aug 13, 2025
CVSS 7.4
EPSS 0.00
CVE-2025-54500
MEDIUM
F5 BIG-IP 15.1.0-15.1.10.8 - Denial of Service via HTTP/2 Control Frame Manipulation
Aug 13, 2025
CVSS 5.3
EPSS 0.00
CVE-2025-53859
LOW
NGINX Open Source >=0.7.22 <1.29.1 and NGINX Plus - Unauthenticated Out-of-bounds Read in SMTP Authentication Process
Aug 13, 2025
CVSS 3.7
EPSS 0.00
CVE-2025-52585
HIGH
BIG-IP 15.1.0-15.1.10.8 - Denial of Service via SSL Forward Proxy with ADH Ciphers
Aug 13, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-48500
HIGH
MacOS F5 VPN < - Local Privilege Escalation
Aug 13, 2025
CVSS 7.3
EPSS 0.00
CVE-2025-46405
HIGH
BIG-IP Access Policy Manager 15.1.0-15.1.10.8 - Denial of Service via Network Access Traffic
Aug 13, 2025
CVSS 7.5
EPSS 0.00
CVE-2025-46265
HIGH
F5OS-A and F5OS-C >=1.6.0 <1.6.2 - Authenticated Incorrect Authorization
May 07, 2025
CVSS 8.8
EPSS 0.00
CVE-2025-43878
MEDIUM
F5OS-A 1.5.1-1.8.0 and F5OS-C 1.6.0-1.6.2 - Authenticated Appliance Mode Restriction Bypass via tcpdump Utility
May 07, 2025
CVSS 6.0
EPSS 0.00
Products
big-ip_access_policy_manager 628
big-ip_application_security_manager 581
big-ip_advanced_firewall_manager 552
big-ip_local_traffic_manager 541
big-ip_policy_enforcement_manager 533
big-ip_link_controller 525
big-ip_application_acceleration_manager 524
big-ip_analytics 511
big-ip_global_traffic_manager 490
big-ip_domain_name_system 469
big-ip_fraud_protection_service 405
big-ip_webaccelerator 297
big-ip_edge_gateway 293
big-ip_advanced_web_application_firewall 195
big-ip_websafe 175
big-ip_ddos_hybrid_defender 166
big-ip_ssl_orchestrator 147
big-ip_carrier-grade_nat 109
big-ip_application_visibility_and_reporting 108
big-ip_container_ingress_services 86
big-ip_automation_toolchain 85
big-iq_centralized_management 85
big-ip_protocol_security_module 61
BIG-IP 46
nginx 42
njs 40
enterprise_manager 39
big-ip_wan_optimization_manager 38
traffix_signaling_delivery_controller 31
ssl_orchestrator 27
Quick Filters