f5
1,031 tracked vulnerabilities.
CVE-2024-21789
HIGH
F5 BIG-IP ASM/Advanced WAF 17.1.0 - Memory Exhaustion via Undisclosed Requests
Feb 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21782
MEDIUM
F5 BIG-IP and BIG-IQ - Authenticated OS Command Injection via SCP Utility
Feb 14, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-21771
HIGH
F5 Big-ip Advanced Firewall Manager < 15.1.9 - Resource Allocation Without Limits
Feb 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21763
HIGH
BIG-IP Advanced Firewall Manager 17.1.0 - Denial of Service via NXDOMAIN Attack Vector
Feb 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-45886
HIGH
F5 BIG-IP Next and ZebOS - Denial of Service via Malformed BGP Update Attribute
Nov 21, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-46748
HIGH
KEV
BIG-IP - Authenticated SQL Injection
Oct 26, 2023
CVSS 8.8
EPSS 0.04
CVE-2023-46747
CRITICAL
KEVNUCLEI
F5 BIG-IP 13.1.0-13.1.4 - Unauthenticated Remote Command Execution via Configuration Utility Bypass
Oct 26, 2023
CVSS 9.8
EPSS 0.97
CVE-2023-44487
HIGH
KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 1.00
CVE-2023-5450
HIGH
BIG-IP Edge Client Installer - Privilege Escalation via Insufficient Data Verification
Oct 10, 2023
CVSS 7.3
EPSS 0.00
CVE-2023-45226
HIGH
F5 BIG-IP Next Service Proxy for Kubernetes - Use of Hard-coded Credentials in TMM Debug Containers
Oct 10, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-45219
MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Authenticated Sensitive Information Exposure via Undisclosed tmsh Command
Oct 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-43746
HIGH
F5 BIG-IP - Authenticated Privilege Escalation via External Monitor Bypass
Oct 10, 2023
CVSS 8.7
EPSS 0.00
CVE-2023-43611
HIGH
BIG-IP Edge Client Installer - Privilege Escalation
Oct 10, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-43485
MEDIUM
F5 BIG-IQ 8.0.0-8.2.0.1 & BIG-IP 13.1.0-13.1.5 - TACACS+ Sensitive Information Disclosure
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-42768
HIGH
F5 BIG-IP 13.1.0-13.1.5 - Insufficient Session Expiration via iControl REST Role Reversion
Oct 10, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-41964
MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Cleartext Storage of Sensitive Information in Database Variables
Oct 10, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-41373
CRITICAL
BIG-IP Configuration Utility - Path Traversal
Oct 10, 2023
CVSS 9.9
EPSS 0.02
CVE-2023-41253
MEDIUM
BIG-IP DNS and LTM - Sensitive Information Disclosure in Audit Log
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-41085
HIGH
F5 BIG-IP 13.1.0-13.1.5 - Denial of Service via IPSec Traffic
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-40542
HIGH
F5 BIG-IP 13.1.0-13.1.4 - Memory Resource Exhaustion via TCP Verified Accept
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-40537
HIGH
F5 BIG-IP 13.1.0-14.1.5 - Insufficient Session Expiration
Oct 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-40534
HIGH
F5 BIG-IP - Denial of Service via HTTP/2 Profile and MRF Router Configuration
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-39447
MEDIUM
F5 BIG-IP APM Guided Configuration - Sensitive Information Disclosure in restnoded Log
Oct 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-43125
MEDIUM
F5 BIG-IP APM 14.1.5.2-14.1.5.5 & Client 7.2.3 - Cleartext Transmission of Sensitive Info
Sep 27, 2023
CVSS 6.8
EPSS 0.00
CVE-2023-43124
MEDIUM
F5 BIG-IP Access Policy Manager 14.1.5.2-14.1.5.5 and Client 7.2.3 - Cleartext Transmission of Sensitive Information
Sep 27, 2023
CVSS 5.3
EPSS 0.00
Products
big-ip_access_policy_manager 628
big-ip_application_security_manager 581
big-ip_advanced_firewall_manager 552
big-ip_local_traffic_manager 541
big-ip_policy_enforcement_manager 533
big-ip_link_controller 525
big-ip_application_acceleration_manager 524
big-ip_analytics 511
big-ip_global_traffic_manager 490
big-ip_domain_name_system 469
big-ip_fraud_protection_service 405
big-ip_webaccelerator 297
big-ip_edge_gateway 293
big-ip_advanced_web_application_firewall 195
big-ip_websafe 175
big-ip_ddos_hybrid_defender 166
big-ip_ssl_orchestrator 147
big-ip_carrier-grade_nat 109
big-ip_application_visibility_and_reporting 108
big-ip_container_ingress_services 86
big-ip_automation_toolchain 85
big-iq_centralized_management 85
big-ip_protocol_security_module 61
BIG-IP 46
nginx 42
njs 40
enterprise_manager 39
big-ip_wan_optimization_manager 38
traffix_signaling_delivery_controller 31
ssl_orchestrator 27
Quick Filters