Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip access policy manager 11.1.0 vulnerabilities and exploits

(subscribe to this query)
383
VMScore
CVE-2013-5976
Cross-site scripting (XSS) vulnerability in the access policy logout page (logout.inc) in F5 BIG-IP APM 10.1.0 up to and including 10.2.4 and 11.1.0 up to and including 11.3.0 allows remote malicious users to inject arbitrary web script or HTML via the LastMRH_Session cookie.
F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 10.1.0F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 10.2.4F5 Big-ip Access Policy Manager 11.0.0
383
VMScore
CVE-2013-5975
The access policy logon page (logon.inc) in F5 BIG-IP APM 11.1.0 up to and including 11.2.1 allows remote malicious users to conduct clickjacking attacks via unspecified vectors.
F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.2.0
383
VMScore
CVE-2016-3686
The Single Sign-On (SSO) feature in F5 BIG-IP APM 11.x prior to 11.6.0 HF6 and BIG-IP Edge Gateway 11.0.0 up to and including 11.3.0 might allow remote malicious users to obtain sensitive SessionId information by leveraging access to the Location HTTP header in a redirect.
F5 Big-ip Edge Gateway 11.3.0F5 Big-ip Edge Gateway 11.2.1F5 Big-ip Edge Gateway 11.2.0F5 Big-ip Edge Gateway 11.1.0F5 Big-ip Edge Gateway 11.0.0F5 Big-ip Access Policy Manager 11.5.4F5 Big-ip Access Policy Manager 11.5.3F5 Big-ip Access Policy Manager 11.4.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 11.6.0F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 11.2.0F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.0.0F5 Big-ip Access Policy Manager 11.5.2F5 Big-ip Access Policy Manager 11.5.1F5 Big-ip Access Policy Manager 11.5.0F5 Big-ip Access Policy Manager 11.4.1
392
VMScore
CVE-2013-6024
The Edge Client components in F5 BIG-IP APM 10.x, 11.x, 12.x, 13.x, and 14.x, BIG-IP Edge Gateway 10.x and 11.x, and FirePass 7.0.0 allow malicious users to obtain sensitive information from process memory via unspecified vectors.
F5 Big-ip Edge Gateway 10.1.0F5 Big-ip Edge Gateway 10.2.4F5 Big-ip Access Policy Manager 11.0.0F5 Firepass 6.0.0F5 Firepass 6.1.0F5 Big-ip Access Policy Manager 11.2.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 10.2.4F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 10.1.0F5 Big-ip Edge Gateway 11.0.0F5 Big-ip Edge Gateway 11.5.0F5 Firepass 7.0.0
668
VMScore
CVE-2012-3000
Multiple SQL injection vulnerabilities in sam/admin/reports/php/saveSettings.php in the (1) APM WebGUI in F5 BIG-IP LTM, GTM, ASM, Link Controller, PSM, APM, Edge Gateway, and Analytics and (2) AVR WebGUI in WebAccelerator and WOM 11.2.x prior to 11.2.0-HF3 and 11.2.x prior to 11...
F5 Big-ip Webaccelerator 11.2.0F5 Big-ip Webaccelerator 11.2.1F5 Big-ip Webaccelerator 11.0.0F5 Big-ip Webaccelerator 11.1.0F5 Big-ip Global Traffic Manager 11.1.0F5 Big-ip Global Traffic Manager 11.0.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Local Traffic Manager 11.1.0F5 Big-ip Local Traffic Manager 11.0.0F5 Big-ip Local Traffic Manager 11.2.0F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Protocol Security Module 11.0.0F5 Big-ip Protocol Security Module 11.1.0F5 Big-ip Protocol Security Module 11.2.0F5 Big-ip Protocol Security Module 11.2.1F5 Big-ip Wan Optimization Manager 11.0.0F5 Big-ip Wan Optimization Manager 11.2.0F5 Big-ip Wan Optimization Manager 11.2.1F5 Big-ip Wan Optimization Manager 11.1.0F5 Big-ip Link Controller 11.2.1F5 Big-ip Link Controller 11.1.0
356
VMScore
CVE-2015-8021
Incomplete blacklist vulnerability in the Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, Link Controller, and PSM 11.x prior to 11.2.1 HF11, 11.3.x, 11.4.0 before HF8, and 11.4.1 before HF6; BIG-IP AAM 11.4.0 before HF8 and 11.4.1 before HF6; BIG-IP AFM and PEM...
F5 Big-ip Wan Optimization Manager 11.0.0F5 Big-ip Webaccelerator 11.3.0F5 Big-ip Protocol Security Module 11.3.0F5 Big-ip Protocol Security Module 11.2.1F5 Big-ip Link Controller 11.4.0F5 Big-ip Link Controller 11.3.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Edge Gateway 11.0.0F5 Big-ip Application Security Manager 11.4.1F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.0.0F5 Big-ip Analytics 11.2.0F5 Big-ip Analytics 11.2.1F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Webaccelerator 11.2.1F5 Big-ip Webaccelerator 11.2.0F5 Big-ip Protocol Security Module 11.2.0F5 Big-ip Protocol Security Module 11.0.0F5 Big-ip Link Controller 11.2.1F5 Big-ip Link Controller 11.2.0
543
VMScore
CVE-2015-6546
The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 prior to 11.6.0, BIG-IP AAM 11.4.0 prior to 11.6.0, BIG-IP AFM and PEM 11.3.0 prior to 11.6.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.0.0 up to and including 11.3.0, BIG-IP PSM 11.0.0 up...
F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Global Traffic Manager 11.0.0F5 Big-ip Global Traffic Manager 11.4.0F5 Big-ip Global Traffic Manager 11.4.1F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.1.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.5.3F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Global Traffic Manager 11.3.0F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.2.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 11.5.3
756
VMScore
CVE-2015-8022
The Configuration utility in F5 BIG-IP LTM, Analytics, APM, ASM, GTM, and Link Controller 11.x prior to 11.2.1 HF16, 11.3.x, 11.4.x prior to 11.4.1 HF10, 11.5.x prior to 11.5.4, and 11.6.x prior to 11.6.1; BIG-IP AAM 11.4.x prior to 11.4.1 HF10, 11.5.x prior to 11.5.4, and 11.6.x...
F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Global Traffic Manager 11.1.0F5 Big-ip Global Traffic Manager 11.0.0F5 Big-ip Global Traffic Manager 11.5.3F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.4.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.6.0F5 Big-ip Global Traffic Manager 11.4.1F5 Big-ip Global Traffic Manager 11.3.0F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 11.4.1F5 Big-ip Local Traffic Manager 11.4.0F5 Big-ip Local Traffic Manager 11.3.0F5 Big-ip Local Traffic Manager 11.1.0F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.0.0F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic Manager 11.5.3
356
VMScore
CVE-2016-1497
The Configuration utility in F5 BIG-IP systems 11.0.x, 11.1.x, 11.2.x prior to 11.2.1 HF16, 11.3.x, 11.4.x prior to 11.4.1 HF10, 11.5.x prior to 11.5.4 HF2, 1.6.x prior to 11.6.1, and 12.0.0 before HF1 allows remote administrators to read Access Policy Manager (APM) access logs v...
F5 Big-ip Webaccelerator 11.2.0F5 Big-ip Webaccelerator 11.2.1F5 Big-ip Webaccelerator 11.3.0F5 Big-ip Webaccelerator 11.0.0F5 Big-ip Webaccelerator 11.1.0F5 Big-ip Link Controller 11.4.0F5 Big-ip Link Controller 11.4.1F5 Big-ip Link Controller 12.0.0F5 Big-ip Link Controller 11.0.0F5 Big-ip Link Controller 11.5.0F5 Big-ip Link Controller 11.5.1F5 Big-ip Link Controller 11.2.1F5 Big-ip Link Controller 11.3.0F5 Big-ip Link Controller 11.5.4F5 Big-ip Link Controller 11.6.0F5 Big-ip Link Controller 11.1.0F5 Big-ip Link Controller 11.2.0F5 Big-ip Link Controller 11.5.2F5 Big-ip Link Controller 11.5.3F5 Big-ip Access Policy Manager 11.5.4F5 Big-ip Access Policy Manager 11.6.0F5 Big-ip Access Policy Manager 12.0.0
356
VMScore
CVE-2014-6031
Buffer overflow in the mcpq daemon in F5 BIG-IP systems 10.x prior to 10.2.4 HF12, 11.x prior to 11.2.1 HF15, 11.3.x, 11.4.x prior to 11.4.1 HF9, 11.5.x prior to 11.5.2 HF1, and 11.6.0 before HF4, and Enterprise Manager 2.1.0 up to and including 2.3.0 and 3.x prior to 3.1.1 HF5 a...
F5 Big-ip Local Traffic Manager 11.3.0F5 Big-ip Local Traffic Manager 11.4.0F5 Big-ip Local Traffic Manager 11.4.1F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 10.2.0F5 Big-ip Local Traffic Manager 10.2.1F5 Big-ip Local Traffic Manager 10.2.2F5 Big-ip Local Traffic Manager 10.2.3F5 Big-ip Local Traffic Manager 10.0.0F5 Big-ip Local Traffic Manager 10.1.0F5 Big-ip Local Traffic Manager 10.2.4F5 Big-ip Local Traffic Manager 11.1.0F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 10.0.1F5 Big-ip Local Traffic Manager 11.0.0F5 Big-ip Local Traffic Manager 11.2.0F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Application Acceleration Manager 11.5.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook