Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

big-ip aam vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2020-5935
On BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, FPS, GTM, Link Controller, PEM) versions 15.1.0-15.1.0.5, 14.1.0-14.1.2.3, and 13.1.0-13.1.3.3, when handling MQTT traffic through a BIG-IP virtual server associated with an MQTT profile and an iRule performing manipulations on ...
F5 Big-ip Access Policy ManagerF5 Big-ip Advanced Firewall ManagerF5 Big-ip AnalyticsF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Security ManagerF5 Big-ip Domain Name SystemF5 Big-ip Fraud Protection ServiceF5 Big-ip Global Traffic ManagerF5 Big-ip Link ControllerF5 Big-ip Local Traffic ManagerF5 Big-ip Policy Enforcement Manager
4.3
CVSSv2
CVE-2019-6655
On versions 13.0.0-13.1.0.1, 12.1.0-12.1.4.1, 11.6.1-11.6.4, and 11.5.1-11.5.9, BIG-IP platforms where AVR, ASM, APM, PEM, AFM, and/or AAM is provisioned may leak sensitive data.
F5 Big-ip Application Acceleration ManagerF5 Big-ip Advanced Firewall ManagerF5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Application Security ManagerF5 Big-ip Policy Enforcement Manager
5
CVSSv2
CVE-2019-6609
Platform dependent weakness. This issue only impacts iSeries platforms. On these platforms, in BIG-IP (LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, FPS, GTM, Link Controller, PEM, WebAccelerator) versions 14.0.0-14.1.0.1, 13.0.0-13.1.1.3, and 12.1.1 HF2-12.1.4, the secu...
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip AnalyticsF5 Big-ip Analytics 12.1.1F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy ManagerF5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 12.1.1F5 Big-ip Domain Name SystemF5 Big-ip Domain Name System 12.1.1F5 Big-ip Edge GatewayF5 Big-ip Edge Gateway 12.1.1F5 Big-ip Fraud Protection ServiceF5 Big-ip Fraud Protection Service 12.1.1F5 Big-ip Global Traffic ManagerF5 Big-ip Global Traffic Manager 12.1.1F5 Big-ip Link ControllerF5 Big-ip Link Controller 12.1.1
2.1
CVSSv2
CVE-2019-6601
In BIG-IP 13.0.0, 12.1.0-12.1.3.7, 11.6.1-11.6.3.2, or 11.5.1-11.5.8, the Application Acceleration Manager (AAM) wamd process used in processing of images and PDFs fails to drop group permissions when executing helper scripts.
F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager
6.8
CVSSv2
CVE-2018-15331
On BIG-IP AAM 13.0.0 or 12.1.0-12.1.3.7, the dcdb_convert utility used by BIG-IP AAM fails to drop group permissions when executing helper scripts, which could be used to leverage attacks against the BIG-IP system.
F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0
7.8
CVSSv2
CVE-2017-6133
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
7.8
CVSSv2
CVE-2017-6135
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, a slow memory leak as a result of undisclosed IPv4 or IPv6 packets sent to BIG-IP management port or self IP addresses may lead to out of memory (OOM) conditions.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Dns 13.0.0F5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Websafe 13.0.0
5
CVSSv2
CVE-2017-6140
On the BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, i10600,i10800, and VIPRION 4450 blades, running version 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 or 12.1.2 of BIG-IP LTM, AAM, AFM, Analytics, ASM, DNS, GTM or PEM, an undi...
F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.2
3.3
CVSSv2
CVE-2017-6134
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash.
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 13.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip Dns 13.0.0F5 Big-ip DnsF5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Websafe 13.0.0F5 Big-ip Websafe
5
CVSSv2
CVE-2017-6138
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, re...
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Dns 13.0.0F5 Big-ip DnsF5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Policy Enforcement ManagerF5 Big-ip Websafe 13.0.0F5 Big-ip Websafe
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-38298CVE-2024-20356CVE-2023-21987CVE-2024-33217bypassCVE-2024-31804CVE-2024-32660unauthorizedSSRF
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook