Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / Vendors / f5

f5

1,024 tracked vulnerabilities.

CVE-2025-54479 HIGH

F5 BIG-IP Next Cloud-Native Network Functions 1.1.0-1.3.9 - Denial of Service via Classification Profile Configuration

CVE-2025-53868 HIGH

F5 BIG-IP 15.1.0-15.1.10.8 - Authenticated Appliance Mode Restriction Bypass via SCP/SFTP Commands

CVE-2025-53856 HIGH

F5 BIG-IP 15.1.0-15.1.10.8 - Denial of Service via ePVA Traffic Handling

CVE-2025-53521 CRITICAL KEV

F5 BIG-IP Access Policy Manager 15.1.0-15.1.10.8 - Remote Code Execution via Malicious Traffic

CVE-2025-53474 HIGH

F5 BIG-IP ILX::call - TMM Denial of Service

CVE-2025-48008 HIGH

F5 BIG-IP - Denial of Service via MPTCP Traffic Handling

CVE-2025-47150 MEDIUM

F5OS-A 1.5.1-1.5.3 and F5OS-C 1.6.0-1.6.4 - Memory Leak via SNMP Requests

CVE-2025-47148 MEDIUM

F5 BIG-IP APM/SSL Orchestrator 15.1.0-15.1.10.8 Memory Exhaustion via SAML SLO

CVE-2025-46706 HIGH

F5 F5 BIG-IP 16.1.0 through 16.1.6 - Memory Resource Exhaustion via iRule HTTP::respond

CVE-2025-41430 HIGH

F5 BIG-IP SSL Orchestrator >=15.1.0 <15.1.9 - Denial of Service via Traffic Management Microkernel Termination

CVE-2025-54809 HIGH

F5 Access for Android 3.1.0-3.1.1 - Improper Certificate Validation

CVE-2025-54500 MEDIUM

F5 BIG-IP 15.1.0-15.1.10.8 - Denial of Service via HTTP/2 Control Frame Manipulation

CVE-2025-53859 LOW

NGINX Open Source >=0.7.22 <1.29.1 and NGINX Plus - Unauthenticated Out-of-bounds Read in SMTP Authentication Process

CVE-2025-52585 HIGH

BIG-IP 15.1.0-15.1.10.8 - Denial of Service via SSL Forward Proxy with ADH Ciphers

CVE-2025-48500 HIGH

MacOS F5 VPN < - Local Privilege Escalation

CVE-2025-46405 HIGH

BIG-IP Access Policy Manager 15.1.0-15.1.10.8 - Denial of Service via Network Access Traffic

CVE-2025-46265 HIGH

F5OS-A and F5OS-C >=1.6.0 <1.6.2 - Authenticated Incorrect Authorization

CVE-2025-43878 MEDIUM

F5OS-A 1.5.1-1.8.0 and F5OS-C 1.6.0-1.6.2 - Authenticated Appliance Mode Restriction Bypass via tcpdump Utility

CVE-2025-41433 HIGH

F5 BIG-IP 15.1.0-15.1.10 - Denial of Service via SIP MRF ALG Profile

CVE-2025-41431 HIGH

BIG-IP - Out-of-bounds Write via Connection Mirroring

CVE-2025-41414 HIGH

F5 BIG-IP 15.1.0-15.1.9 - Denial of Service via HTTP/2 Profile

CVE-2025-41399 HIGH

F5 BIG-IP 15.1.0-15.1.8 - Memory Resource Exhaustion via SCTP Profile

CVE-2025-36557 HIGH

F5 BIG-IP 16.1.0-16.1.4 - Denial of Service via HTTP Profile RFC Compliance Enforcement

CVE-2025-36546 HIGH

F5OS-A 1.5.1-1.5.3 and F5OS-C 1.6.0-1.6.2 - Incorrect Authorization via SSH Key-Based Authentication

CVE-2025-36525 HIGH

F5 BIG-IP Access Policy Manager 15.1.0-15.1.10.7.0.4.5 - Denial of Service via PingAccess Profile

Previous Page 5 of 41 Next

Products

big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27

Quick Filters

Critical CVEs With Exploits In CISA KEV

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy