f5

1,031 tracked vulnerabilities.

CVE-2024-21789 HIGH
F5 BIG-IP ASM/Advanced WAF 17.1.0 - Memory Exhaustion via Undisclosed Requests
Feb 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21782 MEDIUM
F5 BIG-IP and BIG-IQ - Authenticated OS Command Injection via SCP Utility
Feb 14, 2024
CVSS 6.7
EPSS 0.00
CVE-2024-21771 HIGH
F5 Big-ip Advanced Firewall Manager < 15.1.9 - Resource Allocation Without Limits
Feb 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2024-21763 HIGH
BIG-IP Advanced Firewall Manager 17.1.0 - Denial of Service via NXDOMAIN Attack Vector
Feb 14, 2024
CVSS 7.5
EPSS 0.01
CVE-2023-45886 HIGH
F5 BIG-IP Next and ZebOS - Denial of Service via Malformed BGP Update Attribute
Nov 21, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-46748 HIGH KEV
BIG-IP - Authenticated SQL Injection
Oct 26, 2023
CVSS 8.8
EPSS 0.04
CVE-2023-46747 CRITICAL KEVNUCLEI
F5 BIG-IP 13.1.0-13.1.4 - Unauthenticated Remote Command Execution via Configuration Utility Bypass
Oct 26, 2023
CVSS 9.8
EPSS 0.97
CVE-2023-44487 HIGH KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 1.00
CVE-2023-5450 HIGH
BIG-IP Edge Client Installer - Privilege Escalation via Insufficient Data Verification
Oct 10, 2023
CVSS 7.3
EPSS 0.00
CVE-2023-45226 HIGH
F5 BIG-IP Next Service Proxy for Kubernetes - Use of Hard-coded Credentials in TMM Debug Containers
Oct 10, 2023
CVSS 7.4
EPSS 0.00
CVE-2023-45219 MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Authenticated Sensitive Information Exposure via Undisclosed tmsh Command
Oct 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-43746 HIGH
F5 BIG-IP - Authenticated Privilege Escalation via External Monitor Bypass
Oct 10, 2023
CVSS 8.7
EPSS 0.00
CVE-2023-43611 HIGH
BIG-IP Edge Client Installer - Privilege Escalation
Oct 10, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-43485 MEDIUM
F5 BIG-IQ 8.0.0-8.2.0.1 & BIG-IP 13.1.0-13.1.5 - TACACS+ Sensitive Information Disclosure
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-42768 HIGH
F5 BIG-IP 13.1.0-13.1.5 - Insufficient Session Expiration via iControl REST Role Reversion
Oct 10, 2023
CVSS 7.2
EPSS 0.01
CVE-2023-41964 MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Cleartext Storage of Sensitive Information in Database Variables
Oct 10, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-41373 CRITICAL
BIG-IP Configuration Utility - Path Traversal
Oct 10, 2023
CVSS 9.9
EPSS 0.02
CVE-2023-41253 MEDIUM
BIG-IP DNS and LTM - Sensitive Information Disclosure in Audit Log
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-41085 HIGH
F5 BIG-IP 13.1.0-13.1.5 - Denial of Service via IPSec Traffic
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-40542 HIGH
F5 BIG-IP 13.1.0-13.1.4 - Memory Resource Exhaustion via TCP Verified Accept
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-40537 HIGH
F5 BIG-IP 13.1.0-14.1.5 - Insufficient Session Expiration
Oct 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-40534 HIGH
F5 BIG-IP - Denial of Service via HTTP/2 Profile and MRF Router Configuration
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-39447 MEDIUM
F5 BIG-IP APM Guided Configuration - Sensitive Information Disclosure in restnoded Log
Oct 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-43125 MEDIUM
F5 BIG-IP APM 14.1.5.2-14.1.5.5 & Client 7.2.3 - Cleartext Transmission of Sensitive Info
Sep 27, 2023
CVSS 6.8
EPSS 0.00
CVE-2023-43124 MEDIUM
F5 BIG-IP Access Policy Manager 14.1.5.2-14.1.5.5 and Client 7.2.3 - Cleartext Transmission of Sensitive Information
Sep 27, 2023
CVSS 5.3
EPSS 0.00