Latest f5 ssl orchestrator Vulnerabilities

● CVE-2021-22998

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, SYN flood protection thresholds are...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-23000

On BIG-IP versions 13.1.3.4-13.1.3.6 and 12.1.5.2, if the tmm.http.rfc.enforcement BigDB key is enabled in a BIG-IP system, or the Bad host header value is checked in the AFM HTTP security profile ass...

F5 BIG-IP Access Policy Manager>=13.1.3.4<13.1.3.6

F5 BIG-IP Access Policy Manager=12.1.5.2

F5 BIG-IP Advanced Firewall Manager>=13.1.3.4<13.1.3.6

F5 BIG-IP Advanced Firewall Manager=12.1.5.2

F5 Big-ip Advanced Web Application Firewall>=13.1.3.4<13.1.3.6

F5 Big-ip Advanced Web Application Firewall=12.1.5.2

and 22 more

● CVE-2021-22999

On versions 15.0.x before 15.1.0 and 14.1.x before 14.1.4, the BIG-IP system provides an option to connect HTTP/2 clients to HTTP/1.x servers. When a client is slow to accept responses and it closes a...

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.0.0<15.1.0

F5 BIG-IP Advanced Firewall Manager>=14.1.0<14.1.4

F5 BIG-IP Advanced Firewall Manager>=15.0.0<15.1.0

F5 Big-ip Advanced Web Application Firewall>=14.1.0<14.1.4

F5 Big-ip Advanced Web Application Firewall>=15.0.0<15.1.0

and 22 more

● CVE-2021-23004

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, Multipath TCP (MPTCP) forwarding fl...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-23001

On versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, the upload functionality in BIG-IP Advance...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-23003

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2, 14.1.x before 14.1.3.1, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, the Traffic Management Microkernel ...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22991

F5 BIG-IP Traffic Management Microkernel Buffer Overflow

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

F5 BIG-IP Advanced Firewall Manager>=12.1.0<12.1.5.3

and 65 more

● CVE-2021-22994

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, undisclosed endpoints in iControl R...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22992

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, a malicious HTTP response to an Adv...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22987

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3 when running in Appliance mode, the ...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22989

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, when running in Appliance mode with...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22990

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, on systems with Advanced WAF or BIG...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22988

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.3

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

and 78 more

● CVE-2021-22986

F5 BIG-IP and BIG-IQ Centralized Management iControl REST Remote Code Execution Vulnerability

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.3

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.6

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.2.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1.1

F5 BIG-IP Advanced Firewall Manager>=12.1.0<12.1.5.3

and 68 more

● CVE-2020-27719

On BIG-IP 16.0.0-16.0.0.1, 15.1.0-15.1.0.5, and 14.1.0-14.1.3, a cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility.

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.3.1

F5 BIG-IP Access Policy Manager>=15.0.0<15.1.1

F5 BIG-IP Access Policy Manager>=16.0.0<16.0.1

F5 BIG-IP Advanced Firewall Manager>=14.1.0<14.1.3.1

F5 BIG-IP Advanced Firewall Manager>=15.0.0<15.1.1

F5 BIG-IP Advanced Firewall Manager>=16.0.0<16.0.1

and 36 more

● CVE-2020-5938

On BIG-IP 13.1.0-13.1.3.4, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2, when negotiating IPSec tunnels with configured, authenticated peers, the peer may negotiate a different key length than the BIG-IP conf...

F5 BIG-IP Access Policy Manager>=11.6.1<=11.6.5.2

F5 BIG-IP Access Policy Manager>=12.1.0<=12.1.5.2

F5 BIG-IP Access Policy Manager>=13.1.0<=13.1.3.4

F5 BIG-IP Advanced Firewall Manager>=11.6.1<=11.6.5.2

F5 BIG-IP Advanced Firewall Manager>=12.1.0<=12.1.5.2

F5 BIG-IP Advanced Firewall Manager>=13.1.0<=13.1.3.4

and 36 more

● CVE-2020-5929

In versions 13.0.0-13.0.0 HF2, 12.1.0-12.1.2 HF1, and 11.6.1-11.6.2, BIG-IP platforms with Cavium Nitrox SSL hardware acceleration cards, a Virtual Server configured with a Client SSL profile, and usi...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.2

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.2

F5 BIG-IP Access Policy Manager=11.6.2

F5 BIG-IP Access Policy Manager=12.1.2

F5 BIG-IP Access Policy Manager=12.1.2-hotfix1

F5 BIG-IP Access Policy Manager=13.0.0

and 106 more

● CVE-2020-5922

In BIG-IP versions 15.0.0-15.1.0.4, 14.1.0-14.1.2.6, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.2, iControl REST does not implement Cross Site Request Forgery protections for users which make...

F5 BIG-IP Access Policy Manager>=11.6.1<=11.6.5

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.2

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.4

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.2.7

F5 BIG-IP Access Policy Manager>=15.0.0<15.1.0.5

F5 BIG-IP Advanced Firewall Manager>=11.6.1<=11.6.5

and 64 more

● CVE-2020-5916

In BIG-IP versions 15.1.0-15.1.0.4 and 15.0.0-15.0.1.3 the Certificate Administrator user role and higher privileged roles can perform arbitrary file reads outside of the web root directory.

F5 BIG-IP Access Policy Manager>=15.0.0<15.0.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.0.5

F5 BIG-IP Advanced Firewall Manager>=15.0.0<15.0.1.4

F5 BIG-IP Advanced Firewall Manager>=15.1.0<15.1.0.5

F5 BIG-IP Analytics>=15.0.0<15.0.1.4

F5 BIG-IP Analytics>=15.1.0<15.1.0.5

and 20 more

● CVE-2020-5913

In versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.2, the BIG-IP Client or Server SSL profile ignores revoked certificates, even when a valid CRL is pres...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.2

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.2-0.89.37

F5 BIG-IP Access Policy Manager>=14.1.2.1<14.1.2.5

F5 BIG-IP Access Policy Manager>=15.0.0<15.0.1.2

and 78 more

● CVE-2020-5912

In BIG-IP versions 15.1.0-15.1.0.4, 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.1, the restjavad process's dump command does not follow current best coding pr...

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.2

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.2

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.4

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.2.5

F5 BIG-IP Access Policy Manager>=15.0.0<15.0.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.0.5

and 78 more

● CVE-2020-5902

F5 BIG-IP Traffic Management User Interface (TMUI) Remote Code Execution Vulnerability

F5 BIG-IP Access Policy Manager>=11.6.1<11.6.5.2

F5 BIG-IP Access Policy Manager>=12.1.0<12.1.5.2

F5 BIG-IP Access Policy Manager>=13.1.0<13.1.3.4

F5 BIG-IP Access Policy Manager>=14.1.0<14.1.2.6

F5 BIG-IP Access Policy Manager>=15.0.0<=15.0.1.4

F5 BIG-IP Access Policy Manager>=15.1.0<15.1.0.4

and 79 more

● CVE-2019-6674

On F5 SSL Orchestrator 15.0.0-15.0.1 and 14.0.0-14.1.2, TMM may crash when processing SSLO data in a service-chaining configuration.

F5 SSL Orchestrator>=14.0.0<=14.1.2

F5 SSL Orchestrator>=15.0.0<=15.0.1

● CVE-2019-6627

On F5 SSL Orchestrator 14.1.0-14.1.0.5, on rare occasions, specific to a certain race condition, TMM may restart when SSL Forward Proxy enforces the bypass action for an SSL Orchestrator transparent v...

F5 SSL Orchestrator>=14.1.0<14.1.0.6

Latest f5 ssl orchestrator Vulnerabilities

Company

Resources

Contact