Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip access policy manager 12.1.2 vulnerabilities and exploits

(subscribe to this query)
3.5
CVSSv2
CVE-2017-0302
In F5 BIG-IP APM 12.0.0 up to and including 12.1.2 and 13.0.0, an authenticated user with an established access session to the BIG-IP APM system may be able to cause a traffic disruption if the length of the requested URL is less than 16 characters.
F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.0.0F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2
4.3
CVSSv2
CVE-2016-9257
In F5 BIG-IP APM 12.0.0 up to and including 12.1.2, non-authenticated users may be able to inject JavaScript into a request that will then be rendered and executed in the context of the Administrative user when the Administrative user is viewing the Access System Logs, allowing t...
F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.0.0F5 Big-ip Access Policy Manager 12.1.1
4
CVSSv2
CVE-2017-0301
In F5 BIG-IP APM software versions 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 and 12.1.2 BIG-IP APM portal access requests do not return the intended resources in some cases. This may allow access to internal BIG-IP APM resources, however the a...
F5 Big-ip Access Policy Manager 11.5.1F5 Big-ip Access Policy Manager 11.5.2F5 Big-ip Access Policy Manager 11.5.3F5 Big-ip Access Policy Manager 11.5.4F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 11.5.0F5 Big-ip Access Policy Manager 11.6.0F5 Big-ip Access Policy Manager 12.0.0
7.8
CVSSv2
CVE-2017-6129
In F5 BIG-IP APM software version 13.0.0 and 12.1.2, in some circumstances, APM tunneled VPN flows can cause a VPN/PPP connflow to be prematurely freed or cause TMM to stop responding with a "flow not in use" assertion. An attacker may be able to disrupt traffic or caus...
F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 13.0.0
4.3
CVSSv2
CVE-2017-6139
In F5 BIG-IP APM software version 13.0.0 and 12.1.2, under rare conditions, the BIG-IP APM system appends log details when responding to client requests. Details in the log file can vary; customers running debug mode logging with BIG-IP APM are at highest risk.
F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 13.0.0
4.6
CVSSv2
CVE-2022-29263
On F5 BIG-IP APM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions before 7.2.1.5, the BIG-IP Edge Client Component...
F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Access Policy Manager 16.1.0F5 Big-ip Access Policy Manager 17.0.0F5 Big-ip Access Policy Manager 11.6.3F5 Big-ip Access Policy Manager 11.6.4F5 Big-ip Access Policy Manager 11.6.5F5 Big-ip Access Policy Manager 12.1.3F5 Big-ip Access Policy Manager 12.1.4F5 Big-ip Access Policy Manager 12.1.5F5 Big-ip Access Policy Manager 12.1.6F5 Big-ip Access Policy Manager 13.1.1F5 Big-ip Access Policy Manager 13.1.3F5 Big-ip Access Policy Manager 13.1.4F5 Big-ip Access Policy Manager 13.1.5F5 Big-ip Access Policy Manager 14.1.2
4.4
CVSSv2
CVE-2022-28714
On F5 BIG-IP APM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, 13.1.x versions before 13.1.5, and all versions of 12.1.x and 11.6.x, as well as F5 BIG-IP APM Clients 7.x versions before 7.2.1.5, a DLL Hijacking vulnerability ex...
F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager Client 7.1.7F5 Big-ip Access Policy Manager Client 7.1.6F5 Big-ip Access Policy Manager Client 7.1.6.1F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Access Policy Manager 12.1.4F5 Big-ip Access Policy Manager 12.1.5F5 Big-ip Access Policy Manager 12.1.6F5 Big-ip Access Policy Manager 13.1.1F5 Big-ip Access Policy Manager 13.1.3F5 Big-ip Access Policy Manager 13.1.4F5 Big-ip Access Policy Manager 13.1.5F5 Big-ip Access Policy Manager 14.1.2F5 Big-ip Access Policy Manager 14.1.3F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Access Policy Manager 15.1.1F5 Big-ip Access Policy Manager 15.1.2
4.3
CVSSv2
CVE-2017-6141
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 up to and including 12.1.2, certain values in a TLS abbreviated handshake when using a client SSL profile with the Session Ticket option enabled may cause disruption of service to the Traffic Managemen...
F5 Big-ip Link Controller 12.1.0F5 Big-ip Link Controller 12.1.1F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Websafe 12.1.0F5 Big-ip Websafe 12.1.2F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Policy Enforcement Manager 12.1.0F5 Big-ip Policy Enforcement Manager 12.1.1F5 Big-ip Policy Enforcement Manager 12.1.2F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Link Controller 12.1.2F5 Big-ip Websafe 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0
4.3
CVSSv2
CVE-2017-6147
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe 12.1.2-HF1 and 13.0.0, an undisclosed type of responses may cause TMM to restart, causing an interruption of service when "SSL Forward Proxy" setting is enabled in both the Client an...
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip Analytics 12.1.2F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Domain Name System 13.0.0F5 Big-ip Domain Name System 12.1.2F5 Big-ip Link Controller 13.0.0F5 Big-ip Link Controller 12.1.2F5 Big-ip Policy Enforcement Manager 12.1.2F5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Websafe 13.0.0F5 Big-ip Websafe 12.1.2
4.3
CVSSv2
CVE-2016-9245
In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, regardless of settings. The issue is also exposed with the non-default "Normalize URI" conf...
F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Analytics 12.1.2F5 Big-ip Analytics 12.1.0F5 Big-ip Analytics 12.1.1F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Domain Name System 12.1.1F5 Big-ip Domain Name System 12.1.2F5 Big-ip Domain Name System 12.1.0F5 Big-ip Link Controller 12.1.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook