Recently modified high severity vulnerabilities for "f5 big-ip and big-iq centralized management"

Node.jsLast updated 24 July 2024

high

8.8

First published (updated )

CVE-2016-9840

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high

7.5

Exploited

Zeroday

First published (updated )

CVE-2023-44487

Microsoft Windows ServerUnbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities

high

7.5

First published (updated )

CVE-2023-50387

F5 BIG-IP and BIG-IQ Centralized ManagementUnbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities

high

7.5

First published (updated )

CVE-2023-50868

Apache TomcatApache Tomcat: Fix for CVE-2023-24998 is incomplete

high

7.5

First published (updated )

CVE-2023-28709

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP and BIG-IQ Centralized ManagementPrior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncat…

high

7.4

First published (updated )

F5-K000132665

F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting

high

7.4

First published (updated )

CVE-2022-37436

F5 BIG-IP and BIG-IQ Centralized ManagementTiming Oracle in RSA Decryption

high

7.5

First published (updated )

CVE-2022-4304

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP message routing vulnerability

high

8.9

First published (updated )

CVE-2025-20058

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP SIP Vulnerability

high

8.7

EPSS

0.04%

First published (updated )

CVE-2025-22846

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP iControl REST and tmsh vulnerability

high

8.8

First published (updated )

CVE-2025-20029

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP Configuration utility vulnerability

high

8

EPSS

0.04%

First published (updated )

CVE-2025-24320

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP iControl REST vulnerability

high

8.7

EPSS

0.04%

First published (updated )

CVE-2025-23239

MaxthonRegular-expression DoS when parsing TarFile headers

high

7.5

First published (updated )

CVE-2024-6232

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP SNMP vulnerability

high

8.7

First published (updated )

CVE-2025-21091

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP SIP MRF Vulnerability

high

8.7

First published (updated )

CVE-2025-20045

F5 BIG-IP and BIG-IQ Centralized ManagementWhen the Session Initiation Protocol (SIP) application layer gateway (ALG) profile and the SIP route…

high

7

First published (updated )

F5-K000139780

F5 BIG-IP and BIG-IQ Centralized ManagementCommand Injection

high

7

First published (updated )

F5-K000148587

F5 BIG-IP and BIG-IQ Centralized ManagementWhen the Session Initiation Protocol (SIP) application layer gateway (ALG) profile with Passthru Mod…

high

7

First published (updated )

F5-K000138932

F5 BIG-IP and BIG-IQ Centralized ManagementWhen SNMP v1 or v2c are disabled on the BIG-IP system, undisclosed requests can cause an increase in…

high

7

First published (updated )

F5-K000140933

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP and BIG-IQ Centralized ManagementWhen a BIG-IP message routing profile is configured on a virtual server, undisclosed traffic can cau…

high

7

First published (updated )

F5-K000140947

F5 BIG-IP and BIG-IQ Centralized ManagementXSS

high

7

First published (updated )

F5-K000140578

Riverbed SteelApp Traffic ManagerBIG-IP Configuration utility authenticated SQL injection vulnerability

high

8.8

Exploited

First published (updated )

CVE-2023-46748

ubuntu/libssh2An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access…

high

7.5

First published (updated )

CVE-2020-22218

F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request

high

7.5

First published (updated )

CVE-2024-38477

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP and BIG-IQ Centralized ManagementNull Pointer Dereference

high

7

First published (updated )

F5-K000140784

Riverbed SteelApp Traffic ManagerBIG-IP TMUI XSS vulnerability

high

7.5

First published (updated )

CVE-2023-27378

Riverbed SteelApp Traffic ManagerBIG-IP TMM vulnerability

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-24775

Riverbed SteelApp Traffic ManagerBIG-IP SSL Client Certificate LDAP and CRLDP Authentication profiles vulnerability

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-23979

Riverbed SteelApp Traffic ManagerBIG-IP HTTP/2 vulnerability

high

7.5

EPSS

0.04%

First published (updated )

CVE-2024-23314

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Trending

Versions

Node.jsLast updated 24 July 2024

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

Microsoft Windows ServerUnbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities

F5 BIG-IP and BIG-IQ Centralized ManagementUnbound: disclosure of CVE-2023-50387 and CVE-2023-50868 DNSSEC validation vulnerabilities

Apache TomcatApache Tomcat: Fix for CVE-2023-24998 is incomplete

Never miss a vulnerability like this again

F5 BIG-IP and BIG-IQ Centralized ManagementPrior to Apache HTTP Server 2.4.55, a malicious backend can cause the response headers to be truncat…

F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server: mod_proxy prior to 2.4.55 allows a backend to trigger HTTP response splitting

F5 BIG-IP and BIG-IQ Centralized ManagementTiming Oracle in RSA Decryption

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP message routing vulnerability

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP SIP Vulnerability

Never miss a vulnerability like this again

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP iControl REST and tmsh vulnerability

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP Configuration utility vulnerability

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP iControl REST vulnerability

MaxthonRegular-expression DoS when parsing TarFile headers

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP SNMP vulnerability

Never miss a vulnerability like this again

F5 BIG-IP and BIG-IQ Centralized ManagementBIG-IP SIP MRF Vulnerability

F5 BIG-IP and BIG-IQ Centralized ManagementWhen the Session Initiation Protocol (SIP) application layer gateway (ALG) profile and the SIP route…

F5 BIG-IP and BIG-IQ Centralized ManagementCommand Injection

F5 BIG-IP and BIG-IQ Centralized ManagementWhen the Session Initiation Protocol (SIP) application layer gateway (ALG) profile with Passthru Mod…

F5 BIG-IP and BIG-IQ Centralized ManagementWhen SNMP v1 or v2c are disabled on the BIG-IP system, undisclosed requests can cause an increase in…

Never miss a vulnerability like this again

F5 BIG-IP and BIG-IQ Centralized ManagementWhen a BIG-IP message routing profile is configured on a virtual server, undisclosed traffic can cau…

F5 BIG-IP and BIG-IQ Centralized ManagementXSS

Riverbed SteelApp Traffic ManagerBIG-IP Configuration utility authenticated SQL injection vulnerability

ubuntu/libssh2An issue was discovered in function _libssh2_packet_add in libssh2 1.10.0 allows attackers to access…

F5 BIG-IP and BIG-IQ Centralized ManagementApache HTTP Server: Crash resulting in Denial of Service in mod_proxy via a malicious request

Never miss a vulnerability like this again

F5 BIG-IP and BIG-IQ Centralized ManagementNull Pointer Dereference

Riverbed SteelApp Traffic ManagerBIG-IP TMUI XSS vulnerability

Riverbed SteelApp Traffic ManagerBIG-IP TMM vulnerability

Riverbed SteelApp Traffic ManagerBIG-IP SSL Client Certificate LDAP and CRLDP Authentication profiles vulnerability

Riverbed SteelApp Traffic ManagerBIG-IP HTTP/2 vulnerability

Never miss a vulnerability like this again

Company

Resources

Contact