Latest high severity vulnerabilities for "f5 big-ip webaccelerator"

F5 BIG-IPBIG-IP MPTCP vulnerability

high

8.2

First published (updated )

CVE-2024-41164

F5 BIG-IPBIG-IP TMM vulnerability

high

8.7

First published (updated )

CVE-2024-41727

F5 BIG-IPBIG-IP HSB vulnerability

high

8.7

First published (updated )

CVE-2024-39778

F5 BIG-IPBIG-IP Configuration utility authenticated SQL injection vulnerability

high

8.8

Exploited

First published (updated )

CVE-2023-46748

F5 BIG-IP Access Policy ManagerBIG-IP TCP Profile vulnerability

high

7.5

First published (updated )

CVE-2023-40542

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IPBIG-IP HTTP/2 vulnerability

high

7.5

First published (updated )

CVE-2023-40534

F5 BIG-IPBIG-IP iControl REST vulnerability

high

7.2

First published (updated )

CVE-2023-42768

F5 BIG-IPMulti-blade VIPRION Configuration utility session cookie vulnerability

high

8.1

First published (updated )

CVE-2023-40537

F5 BIG-IP Access Policy ManagerBIG-IP Edge Client for macOS vulnerability

high

7.8

First published (updated )

CVE-2023-43611

F5 BIG-IPBIG-IP IPSEC vulnerability

high

7.5

First published (updated )

CVE-2023-41085

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

high

7.5

Exploited

Zeroday

First published (updated )

CVE-2023-44487

F5 BIG-IP Access Policy ManagerBIG-IP Configuration utility vulnerability

high

7.5

EPSS

0.05%

First published (updated )

CVE-2023-38138

F5 BIG-IPWhen a UDP profile with Idle Timeout set to Immediate or the value 0 is configured on a virtual serv…

high

7.5

First published (updated )

CVE-2023-29163

F5 BIG-IP Access Policy ManagerBIG-IP TMUI XSS vulnerability

high

7.5

First published (updated )

CVE-2023-27378

Hpe Arubaos-cxThe Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arb…

high

7.5

First published (updated )

CVE-2002-20001

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP Access Policy ManagerIn BIG-IP 15.0.0-15.1.0.4, 14.1.0-14.1.2.7, 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2 an…

high

7.5

First published (updated )

CVE-2020-5930

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, when a virtual server …

high

7.5

First published (updated )

CVE-2020-5883

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5, and 11.6.1-11.6.5.1, und…

high

7.5

First published (updated )

CVE-2020-5882

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and …

high

7.8

First published (updated )

CVE-2020-5858

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undis…

high

7.5

First published (updated )

CVE-2020-5857

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 Big-ip Local Traffic ManagerCVE-2020-5852

First published (updated )

CVE-2020-5852

F5 BIG-IP Access Policy ManagerOn BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, …

high

7.8

First published (updated )

CVE-2019-6685

F5 BIG-IP Access Policy ManagerOn versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.…

high

7.5

First published (updated )

CVE-2019-6683

F5 BIG-IP Access Policy ManagerOn versions 15.0.0-15.0.1, 14.0.0-14.1.2.2, and 13.1.0-13.1.3.1, TMM may restart on BIG-IP Virtual E…

high

7.5

First published (updated )

CVE-2019-6676

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, and 13.1.0-13.1.1.4, the TMM process may …

high

7.5

First published (updated )

CVE-2019-6666

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.1.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.…

high

7.5

First published (updated )

CVE-2019-6667

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.1-11…

high

7.5

First published (updated )

CVE-2019-6669

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, under certain conditions…

high

7.5

First published (updated )

CVE-2019-6671

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0 and 14.1.0-14.1.0.6, under certain conditions, network protections on the managemen…

high

7.5

First published (updated )

CVE-2019-6664

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.1, undisclosed HTTP requests may consume exc…

high

7.5

First published (updated )

CVE-2019-6660

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP Access Policy ManagerOn version 14.0.0-14.1.0.1, BIG-IP virtual servers with TLSv1.3 enabled may experience a denial of s…

high

7.5

First published (updated )

CVE-2019-6659

ISC BINDLimiting simultaneous TCP clients was ineffective

high

7.5

First published (updated )

CVE-2018-5743

F5 BIG-IP Access Policy ManagerLast updated 24 July 2024

high

7.5

First published (updated )

CVE-2018-14880

F5 BIG-IP Access Policy ManagerLast updated 24 July 2024

high

7.5

First published (updated )

CVE-2018-14468

F5 Big-ip Local Traffic ManagerOn versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, 12.1.0-12.1.4.1, and 11.5.2-11.6.4, an …

high

7.5

First published (updated )

CVE-2019-6643

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP Access Policy ManagerOn BIG-IP 11.5.2-11.6.4 and Enterprise Manager 3.1.1, REST users with guest privileges may be able t…

high

8.8

First published (updated )

CVE-2019-6646

F5 Big-ip Local Traffic ManagerOn BIG-IP 14.0.0-14.1.0.5, 13.0.0-13.1.2, 12.1.0-12.1.4.1, 11.5.2-11.6.4, FTP traffic passing throug…

high

7.5

First published (updated )

CVE-2019-6645

F5 Big-ip Local Traffic ManagerOn BIG-IP 11.5.1-11.6.4, iRules performing HTTP header manipulation may cause an interruption to ser…

high

7.5

First published (updated )

CVE-2019-6631

F5 Big-ip Local Traffic ManagerOn BIG-IP 14.1.0-14.1.0.5, undisclosed SSL traffic to a virtual server configured with a Client SSL …

high

7.5

First published (updated )

CVE-2019-6629

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, undisclosed traffic …

high

7.5

First published (updated )

CVE-2019-6623

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, an undisclosed traff…

high

7.5

First published (updated )

CVE-2019-6624

F5 BIG-IP Access Policy ManagerCommand Injection

high

7.2

First published (updated )

CVE-2019-6622

F5 BIG-IP Access Policy ManagerOS Command Injection, Command Injection

high

7.2

First published (updated )

CVE-2019-6621

F5 BIG-IP Access Policy ManagerOS Command Injection, Command Injection

high

7.2

First published (updated )

CVE-2019-6620

F5 Big-ip Application Acceleration ManagerLast updated 3 October 2024

high

8.8

First published (updated )

CVE-2019-13135

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

redhat/kernelJonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows …

high

7.5

First published (updated )

CVE-2019-11479

redhat/kernelSACK can cause extensive memory use via fragmented resend queue

high

7.5

First published (updated )

CVE-2019-11478

redhat/kernelInteger overflow in TCP_SKB_CB(skb)->tcp_gso_segs

high

7.8

First published (updated )

CVE-2019-11477

F5 BIG-IP Access Policy ManagerLast updated 24 July 2024

high

7.5

First published (updated )

CVE-2019-12295

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, the Traffic Management Microkernel (T…

high

7.5

First published (updated )

CVE-2019-6619

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read More Start Free Trial

Versions

F5 BIG-IPBIG-IP MPTCP vulnerability

F5 BIG-IPBIG-IP TMM vulnerability

F5 BIG-IPBIG-IP HSB vulnerability

F5 BIG-IPBIG-IP Configuration utility authenticated SQL injection vulnerability

F5 BIG-IP Access Policy ManagerBIG-IP TCP Profile vulnerability

Never miss a vulnerability like this again

F5 BIG-IPBIG-IP HTTP/2 vulnerability

F5 BIG-IPBIG-IP iControl REST vulnerability

F5 BIG-IPMulti-blade VIPRION Configuration utility session cookie vulnerability

F5 BIG-IP Access Policy ManagerBIG-IP Edge Client for macOS vulnerability

F5 BIG-IPBIG-IP IPSEC vulnerability

Never miss a vulnerability like this again

Apache Tomcat- Rapid Reset HTTP/2 vulnerability

F5 BIG-IP Access Policy ManagerBIG-IP Configuration utility vulnerability

F5 BIG-IPWhen a UDP profile with Idle Timeout set to Immediate or the value 0 is configured on a virtual serv…

F5 BIG-IP Access Policy ManagerBIG-IP TMUI XSS vulnerability

Hpe Arubaos-cxThe Diffie-Hellman Key Agreement Protocol allows remote attackers (from the client side) to send arb…

Never miss a vulnerability like this again

F5 BIG-IP Access Policy ManagerIn BIG-IP 15.0.0-15.1.0.4, 14.1.0-14.1.2.7, 13.1.0-13.1.3.3, 12.1.0-12.1.5.2, and 11.6.1-11.6.5.2 an…

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.3, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, when a virtual server …

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1.3, 14.1.0-14.1.2.3, 13.1.0-13.1.3.3, 12.1.0-12.1.5, and 11.6.1-11.6.5.1, und…

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1.2, 14.1.0-14.1.2.2, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.5.2-11.6.5.1 and …

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2.2, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.2-11.6.5.1, undis…

Never miss a vulnerability like this again

F5 Big-ip Local Traffic ManagerCVE-2020-5852

F5 BIG-IP Access Policy ManagerOn BIG-IP versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, …

F5 BIG-IP Access Policy ManagerOn versions 15.0.0-15.0.1.1, 14.1.0-14.1.2.2, 14.0.0-14.0.1, 13.1.0-13.1.3.2, 12.1.0-12.1.5, and 11.…

F5 BIG-IP Access Policy ManagerOn versions 15.0.0-15.0.1, 14.0.0-14.1.2.2, and 13.1.0-13.1.3.1, TMM may restart on BIG-IP Virtual E…

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, and 13.1.0-13.1.1.4, the TMM process may …

Never miss a vulnerability like this again

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.1.0-13.1.1.5, 12.1.0-12.1.4.1, and 11.…

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, 13.1.0-13.1.3.1, 12.1.0-12.1.5, and 11.5.1-11…

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0-15.0.1, 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.3.1, under certain conditions…

F5 BIG-IP Access Policy ManagerOn BIG-IP 15.0.0 and 14.1.0-14.1.0.6, under certain conditions, network protections on the managemen…

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.1.0-14.1.2, 14.0.0-14.0.1, and 13.1.0-13.1.1, undisclosed HTTP requests may consume exc…

Never miss a vulnerability like this again

F5 BIG-IP Access Policy ManagerOn version 14.0.0-14.1.0.1, BIG-IP virtual servers with TLSv1.3 enabled may experience a denial of s…

ISC BINDLimiting simultaneous TCP clients was ineffective

F5 BIG-IP Access Policy ManagerLast updated 24 July 2024

F5 BIG-IP Access Policy ManagerLast updated 24 July 2024

F5 Big-ip Local Traffic ManagerOn versions 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.2, 12.1.0-12.1.4.1, and 11.5.2-11.6.4, an …

Never miss a vulnerability like this again

F5 BIG-IP Access Policy ManagerOn BIG-IP 11.5.2-11.6.4 and Enterprise Manager 3.1.1, REST users with guest privileges may be able t…

F5 Big-ip Local Traffic ManagerOn BIG-IP 14.0.0-14.1.0.5, 13.0.0-13.1.2, 12.1.0-12.1.4.1, 11.5.2-11.6.4, FTP traffic passing throug…

F5 Big-ip Local Traffic ManagerOn BIG-IP 11.5.1-11.6.4, iRules performing HTTP header manipulation may cause an interruption to ser…

F5 Big-ip Local Traffic ManagerOn BIG-IP 14.1.0-14.1.0.5, undisclosed SSL traffic to a virtual server configured with a Client SSL …

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, undisclosed traffic …

Never miss a vulnerability like this again

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.1.0-14.1.0.5, 14.0.0-14.0.0.4, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, an undisclosed traff…

F5 BIG-IP Access Policy ManagerCommand Injection

F5 BIG-IP Access Policy ManagerOS Command Injection, Command Injection

F5 BIG-IP Access Policy ManagerOS Command Injection, Command Injection

F5 Big-ip Application Acceleration ManagerLast updated 3 October 2024

Never miss a vulnerability like this again

redhat/kernelJonathan Looney discovered that the Linux kernel default MSS is hard-coded to 48 bytes. This allows …

redhat/kernelSACK can cause extensive memory use via fragmented resend queue

redhat/kernelInteger overflow in TCP_SKB_CB(skb)->tcp_gso_segs

F5 BIG-IP Access Policy ManagerLast updated 24 July 2024

F5 BIG-IP Access Policy ManagerOn BIG-IP 14.0.0-14.1.0.1, 13.0.0-13.1.1.4, and 12.1.0-12.1.4, the Traffic Management Microkernel (T…

Never miss a vulnerability like this again

Company

Resources

Contact