Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

big-ip asm vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2017-6168
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) ...
F5 Big-ip LtmF5 Big-ip Ltm 13.0.0F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip AfmF5 Big-ip Afm 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip ApmF5 Big-ip Apm 13.0.0F5 Big-ip AsmF5 Big-ip Asm 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Pem 13.0.0F5 Big-ip PemF5 Websafe 13.0.0F5 WebsafeF5 Websafe 11.6.2
4.3
CVSSv2
CVE-2017-6166
In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server configured ...
F5 Big-ip ApmF5 Big-ip AnalyticsF5 Big-ip PemF5 Big-ip Link ControllerF5 Big-ip LtmF5 LinerateF5 F5 WebsafeF5 Big-ip AfmF5 Big-ip Application Acceleration ManagerF5 Big-ip DnsF5 Big-ip Asm
7.8
CVSSv2
CVE-2017-6133
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
8.5
CVSSv2
CVE-2017-6167
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, race conditions in iControl REST may lead to commands being executed with different privilege levels than expected.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
4.3
CVSSv2
CVE-2014-9326
The automatic signature update functionality in the (1) Phone Home feature in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, and Link Controller 11.5.0 up to and including 11.6.0, ASM 10.0.0 up to and including 11.6.0, and PEM 11.3.0 up to and including 11.6.0 and the (2) Call Hom...
F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Policy Enforcement Manager 11.5.0F5 Big-ip Policy Enforcement Manager11.5.1F5 Big-ip Policy Enforcement Manager 11.5.2F5 Big-ip Policy Enforcement Manager 11.6.0F5 Big-ip Policy Enforcement Manager 11.3.0F5 Big-ip Policy Enforcement Manager 11.4.0F5 Big-ip Policy Enforcement Manager 11.4.1F5 Big-ip Global Traffic Manager 11.6.0F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 11.5.0
5
CVSSv2
CVE-2022-26890
On F5 BIG-IP Advanced WAF, ASM, and APM 16.1.x versions before 16.1.2.1, 15.1.x versions before 15.1.5, 14.1.x versions before 14.1.4.6, and 13.1.x versions before 13.1.5, when ASM or Advanced WAF, as well as APM, are configured on a virtual server, the ASM policy is configured w...
F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Application Security Manager 15.1.0F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Advanced Web Application Firewall 15.1.0F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Advanced Web Application Firewall 14.1.4F5 Big-ip Application Security Manager 14.1.4F5 Big-ip Access Policy Manager 13.1.1F5 Big-ip Access Policy Manager 13.1.3F5 Big-ip Access Policy Manager 13.1.4F5 Big-ip Access Policy Manager 13.1.5F5 Big-ip Access Policy Manager 14.1.2F5 Big-ip Access Policy Manager 14.1.3F5 Big-ip Access Policy Manager 15.1.1F5 Big-ip Access Policy Manager 15.1.2F5 Big-ip Access Policy Manager 15.1.3F5 Big-ip Access Policy Manager 15.1.4F5 Big-ip Access Policy Manager 15.1.5F5 Big-ip Access Policy Manager 16.1.0
3.3
CVSSv2
CVE-2017-6134
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash.
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 13.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip Dns 13.0.0F5 Big-ip DnsF5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Websafe 13.0.0F5 Big-ip Websafe
6.1
CVSSv2
CVE-2015-6546
The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 prior to 11.6.0, BIG-IP AAM 11.4.0 prior to 11.6.0, BIG-IP AFM and PEM 11.3.0 prior to 11.6.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.0.0 up to and including 11.3.0, BIG-IP PSM 11.0.0 up...
F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Global Traffic Manager 11.0.0F5 Big-ip Global Traffic Manager 11.4.0F5 Big-ip Global Traffic Manager 11.4.1F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.1.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.5.3F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Global Traffic Manager 11.3.0F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.2.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 11.5.3
6.8
CVSSv2
CVE-2017-6164
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software version 13.0.0, 12.0.0 - 12.1.2, 11.6.0 - 11.6.1 and 11.5.0 - 11.5.4, in some circumstances, Traffic Management Microkernel (TMM) does not properly h...
F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.5.3F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Analytics
5
CVSSv2
CVE-2017-6132
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 13.0.0, 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 and 11.5.0 - 11.5.4, an undisclosed sequence of packets sent to BIG-IP High Availability state mirror listeners (primary and/or ...
F5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.5.3F5 Big-ip Analytics 11.5.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27975CVE-2024-2961CVE-2024-20380XML injectionHTML injectionCVE-2024-29204CVE-2023-51795memory leakCVE-2024-3470
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook