f5

1,024 tracked vulnerabilities.

CVE-2023-44487 HIGH KEV
HTTP/2 - Denial of Service via Rapid Stream Reset
Oct 10, 2023
CVSS 7.5
EPSS 0.94
CVE-2023-5450 HIGH
BIG-IP Edge Client Installer - Privilege Escalation via Insufficient Data Verification
Oct 10, 2023
CVSS 7.3
EPSS 0.00
CVE-2023-45226 HIGH
F5 BIG-IP Next Service Proxy for Kubernetes - Use of Hard-coded Credentials in TMM Debug Containers
Oct 10, 2023
CVSS 7.4
EPSS 0.01
CVE-2023-45219 MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Authenticated Sensitive Information Exposure via Undisclosed tmsh Command
Oct 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-43746 HIGH
F5 BIG-IP - Authenticated Privilege Escalation via External Monitor Bypass
Oct 10, 2023
CVSS 8.7
EPSS 0.00
CVE-2023-43611 HIGH
BIG-IP Edge Client Installer - Privilege Escalation
Oct 10, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-43485 MEDIUM
F5 BIG-IQ 8.0.0-8.2.0.1 & BIG-IP 13.1.0-13.1.5 - TACACS+ Sensitive Information Disclosure
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-42768 HIGH
F5 BIG-IP 13.1.0-13.1.5 - Insufficient Session Expiration via iControl REST Role Reversion
Oct 10, 2023
CVSS 7.2
EPSS 0.00
CVE-2023-41964 MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Cleartext Storage of Sensitive Information in Database Variables
Oct 10, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-41373 CRITICAL
BIG-IP Configuration Utility - Path Traversal
Oct 10, 2023
CVSS 9.9
EPSS 0.03
CVE-2023-41253 MEDIUM
BIG-IP DNS and LTM - Sensitive Information Disclosure in Audit Log
Oct 10, 2023
CVSS 5.5
EPSS 0.00
CVE-2023-41085 HIGH
F5 BIG-IP 13.1.0-13.1.5 - Denial of Service via IPSec Traffic
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-40542 HIGH
F5 BIG-IP 13.1.0-13.1.4 - Memory Resource Exhaustion via TCP Verified Accept
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-40537 HIGH
F5 BIG-IP 13.1.0-14.1.5 - Insufficient Session Expiration
Oct 10, 2023
CVSS 8.1
EPSS 0.00
CVE-2023-40534 HIGH
F5 BIG-IP - Denial of Service via HTTP/2 Profile and MRF Router Configuration
Oct 10, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-39447 MEDIUM
F5 BIG-IP APM Guided Configuration - Sensitive Information Disclosure in restnoded Log
Oct 10, 2023
CVSS 4.4
EPSS 0.00
CVE-2023-43125 MEDIUM
F5 BIG-IP APM 14.1.5.2-14.1.5.5 & Client 7.2.3 - Cleartext Transmission of Sensitive Info
Sep 27, 2023
CVSS 6.8
EPSS 0.00
CVE-2023-43124 MEDIUM
F5 BIG-IP Access Policy Manager 14.1.5.2-14.1.5.5 and Client 7.2.3 - Cleartext Transmission of Sensitive Information
Sep 27, 2023
CVSS 5.3
EPSS 0.00
CVE-2023-3470 MEDIUM
F5 BIG-IP - Improper Authentication via Deterministic Crypto User Password
Aug 02, 2023
CVSS 6.0
EPSS 0.00
CVE-2023-38423 MEDIUM
F5 BIG-IP 13.1.0-13.1.5 - Cross-Site Scripting in Configuration Utility
Aug 02, 2023
CVSS 5.4
EPSS 0.00
CVE-2023-38419 MEDIUM
F5 BIG-IP Access Policy Manager 13.1.0-13.1.5 - Authenticated Denial of Service via iControl SOAP Request
Aug 02, 2023
CVSS 4.3
EPSS 0.00
CVE-2023-38418 HIGH
BIG-IP Edge Client Installer - Privilege Escalation
Aug 02, 2023
CVSS 7.8
EPSS 0.00
CVE-2023-38138 HIGH
F5 BIG-IP 13.1.0-13.1.5 - Reflected Cross-Site Scripting in Configuration Utility
Aug 02, 2023
CVSS 7.5
EPSS 0.01
CVE-2023-36858 HIGH
BIG-IP Edge Client - Info Disclosure
Aug 02, 2023
CVSS 7.1
EPSS 0.00
CVE-2023-36494 MEDIUM
F5OS-A - Sensitive Information Disclosure in Audit Logs
Aug 02, 2023
CVSS 4.4
EPSS 0.00
Products
big-ip_access_policy_manager 589 big-ip_application_security_manager 541 big-ip_advanced_firewall_manager 514 big-ip_local_traffic_manager 503 big-ip_policy_enforcement_manager 495 big-ip_link_controller 487 big-ip_application_acceleration_manager 486 big-ip_analytics 473 big-ip_global_traffic_manager 452 big-ip_domain_name_system 429 big-ip_fraud_protection_service 367 big-ip_webaccelerator 259 big-ip_edge_gateway 255 big-ip_advanced_web_application_firewall 155 big-ip_websafe 137 big-ip_ddos_hybrid_defender 127 big-ip_ssl_orchestrator 108 big-iq_centralized_management 77 big-ip_carrier-grade_nat 71 big-ip_application_visibility_and_reporting 70 big-ip_protocol_security_module 61 big-ip_container_ingress_services 48 big-ip_automation_toolchain 47 BIG-IP 46 nginx 41 enterprise_manager 39 njs 39 big-ip_wan_optimization_manager 38 traffix_signaling_delivery_controller 31 ssl_orchestrator 27
Quick Filters
Critical CVEs With Exploits In CISA KEV