Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
f5 big-ip domain name system vulnerabilities and exploits
(subscribe to this query)
3.7
CVSSv3
CVE-2018-5538
On F5 BIG-IP DNS 13.1.0-13.1.0.7, 12.1.3-12.1.3.5, DNS Express / DNS Zones accept NOTIFY messages on the management interface from source IP addresses not listed in the 'Allow NOTIFY From' configuration parameter when the db variable "dnsexpress.notifyport" is...
F5 Big-ip Domain Name System
F5 Big-ip Global Traffic Manager
F5 Big-ip Local Traffic Manager
F5 Big-ip Link Controller
7.5
CVSSv3
CVE-2022-28701
On F5 BIG-IP 16.1.x versions before 16.1.2.2, when the stream profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated
F5 Big-ip Application Acceleration Manager 16.1.0
F5 Big-ip Access Policy Manager 16.1.0
F5 Big-ip Advanced Firewall Manager 16.1.0
F5 Big-ip Application Security Manager 16.1.0
F5 Big-ip Domain Name System 16.1.0
F5 Big-ip Fraud Protection Service 16.1.0
F5 Big-ip Global Traffic Manager 16.1.0
F5 Big-ip Link Controller 16.1.0
F5 Big-ip Local Traffic Manager 16.1.0
F5 Big-ip Policy Enforcement Manager 16.1.0
F5 Big-ip Advanced Firewall Manager 16.1.2
F5 Big-ip Advanced Firewall Manager 16.1.1
F5 Big-ip Access Policy Manager 16.1.2
F5 Big-ip Access Policy Manager 16.1.1
F5 Big-ip Analytics 16.1.2
F5 Big-ip Analytics 16.1.1
F5 Big-ip Analytics 16.1.0
F5 Big-ip Application Security Manager 16.1.2
F5 Big-ip Application Security Manager 16.1.1
F5 Big-ip Application Acceleration Manager 16.1.2
F5 Big-ip Application Acceleration Manager 16.1.1
F5 Big-ip Policy Enforcement Manager 16.1.2
9.8
CVSSv3
CVE-2017-6131
In some circumstances, an F5 BIG-IP version 12.0.0 to 12.1.2 and 13.0.0 Azure cloud instance may contain a default administrative password which could be used to remotely log into the BIG-IP system. The impacted administrative account is the Azure instance administrative user tha...
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Local Traffic Manager 12.0.0
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Local Traffic Manager 13.0.0
F5 Big-ip Local Traffic Manager 12.1.1
F5 Big-ip Application Acceleration Manager 12.0.0
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Application Acceleration Manager 12.1.2
F5 Big-ip Application Acceleration Manager 13.0.0
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
F5 Big-ip Advanced Firewall Manager 12.0.0
F5 Big-ip Advanced Firewall Manager 13.0.0
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Access Policy Manager 12.0.0
F5 Big-ip Access Policy Manager 13.0.0
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Access Policy Manager 12.1.0
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Application Security Manager 13.0.0
7.3
CVSSv3
CVE-2017-6145
iControl REST in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.0.0 up to and including 12.1.2 and 13.0.0 includes a service to convert authorization BIGIPAuthCookie cookies to X-F5-Auth-Token tokens. This service does not properly re-vali...
F5 Big-ip Link Controller 13.0.0
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Policy Enforcement Manager 13.0.0
F5 Big-ip Domain Name System 12.1.2
F5 Big-ip Policy Enforcement Manager 12.1.1
F5 Big-ip Policy Enforcement Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Websafe 12.1.0
F5 Big-ip Link Controller 12.1.1
F5 Big-ip Analytics 12.1.0
F5 Big-ip Access Policy Manager 13.0.0
F5 Big-ip Local Traffic Manager 13.0.0
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Websafe 13.0.0
F5 Big-ip Websafe 12.1.1
F5 Big-ip Link Controller 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
8.8
CVSSv3
CVE-2016-9251
In F5 BIG-IP 12.0.0 up to and including 12.1.2, an authenticated attacker may be able to cause an escalation of privileges through a crafted iControl REST connection.
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Local Traffic Manager 12.0.0
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Local Traffic Manager 12.1.1
F5 Big-ip Application Acceleration Manager 12.0.0
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Application Acceleration Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
F5 Big-ip Advanced Firewall Manager 12.0.0
F5 Big-ip Analytics 12.1.0
F5 Big-ip Analytics 12.0.0
F5 Big-ip Analytics 12.1.2
F5 Big-ip Analytics 12.1.1
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Access Policy Manager 12.0.0
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Access Policy Manager 12.1.0
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Application Security Manager 12.1.0
7.5
CVSSv3
CVE-2016-9256
In F5 BIG-IP 12.1.0 up to and including 12.1.2, permissions enforced by iControl can lag behind the actual permissions assigned to a user if the role_map is not reloaded between the time the permissions are changed and the time of the user's next request. This is a race cond...
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Local Traffic Manager 12.0.0
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Local Traffic Manager 12.1.1
F5 Big-ip Application Acceleration Manager 12.0.0
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Application Acceleration Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
F5 Big-ip Advanced Firewall Manager 12.0.0
F5 Big-ip Analytics 12.1.0
F5 Big-ip Analytics 12.0.0
F5 Big-ip Analytics 12.1.2
F5 Big-ip Analytics 12.1.1
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Access Policy Manager 12.0.0
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Access Policy Manager 12.1.0
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Application Security Manager 12.1.0
5.3
CVSSv3
CVE-2022-29479
On F5 BIG-IP 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, and F5 BIG-IQ Centralized Management all versions of 8.x and 7.x, when an IPv6 self IP address is configured and the ipv6.strictcom...
F5 Big-ip Local Traffic Manager 11.6.1
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Global Traffic Manager 11.6.1
F5 Big-ip Domain Name System 12.1.2
F5 Big-ip Policy Enforcement Manager 12.1.1
F5 Big-ip Policy Enforcement Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Analytics 11.6.1
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Link Controller 12.1.1
F5 Big-ip Analytics 12.1.0
F5 Big-ip Application Acceleration Manager 11.6.1
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Link Controller 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Link Controller 11.6.1
F5 Big-ip Link Controller 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
4.9
CVSSv3
CVE-2022-26340
On F5 BIG-IP 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, and F5 BIG-IQ Centralized Management all versions of 8.x and 7.x, an authenticated, high-privilege...
F5 Big-ip Local Traffic Manager 11.6.1
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Global Traffic Manager 11.6.1
F5 Big-ip Domain Name System 12.1.2
F5 Big-ip Policy Enforcement Manager 12.1.1
F5 Big-ip Policy Enforcement Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Analytics 11.6.1
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Link Controller 12.1.1
F5 Big-ip Analytics 12.1.0
F5 Big-ip Application Acceleration Manager 11.6.1
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Link Controller 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Link Controller 11.6.1
F5 Big-ip Link Controller 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
7.5
CVSSv3
CVE-2022-26071
On F5 BIG-IP 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, a flaw in the way reply ICMP packets are limited in the Traffic Management Microkernel (TMM) allow...
F5 Big-ip Local Traffic Manager 11.6.1
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Global Traffic Manager 11.6.1
F5 Big-ip Domain Name System 12.1.2
F5 Big-ip Policy Enforcement Manager 12.1.1
F5 Big-ip Policy Enforcement Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Analytics 11.6.1
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Link Controller 12.1.1
F5 Big-ip Analytics 12.1.0
F5 Big-ip Application Acceleration Manager 11.6.1
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Link Controller 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Link Controller 11.6.1
F5 Big-ip Link Controller 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
7.5
CVSSv3
CVE-2022-26372
On F5 BIG-IP 15.1.x versions before 15.1.0.2, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, when a DNS listener is configured on a virtual server with DNS queueing (default), undisclosed requests can cause an increase in me...
F5 Big-ip Local Traffic Manager 11.6.1
F5 Big-ip Local Traffic Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.0
F5 Big-ip Access Policy Manager 12.1.2
F5 Big-ip Global Traffic Manager 11.6.1
F5 Big-ip Domain Name System 12.1.2
F5 Big-ip Policy Enforcement Manager 12.1.1
F5 Big-ip Policy Enforcement Manager 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.2
F5 Big-ip Application Security Manager 12.1.1
F5 Big-ip Local Traffic Manager 12.1.0
F5 Big-ip Analytics 11.6.1
F5 Big-ip Application Acceleration Manager 12.1.0
F5 Big-ip Link Controller 12.1.1
F5 Big-ip Analytics 12.1.0
F5 Big-ip Application Acceleration Manager 11.6.1
F5 Big-ip Access Policy Manager 12.1.1
F5 Big-ip Link Controller 12.1.0
F5 Big-ip Application Acceleration Manager 12.1.1
F5 Big-ip Link Controller 11.6.1
F5 Big-ip Link Controller 12.1.2
F5 Big-ip Advanced Firewall Manager 12.1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23692
CVE-2012-1823
memory leak
CVE-2024-0627
CVE-2024-31402
privilege escalation
CVE-2024-36418
remote code execution
CVE-2024-27844
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »