Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip application security manager 13.1.0 vulnerabilities and exploits

(subscribe to this query)
6.5
CVSSv2
CVE-2018-5511
On F5 BIG-IP 13.1.0-13.1.0.3 or 13.0.0, when authenticated administrative users execute commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utility, restrictions on allowed commands may not be enforced.
F5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Analytics 13.1.0F5 Big-ip Analytics 13.0.0F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Edge Gateway 13.1.0F5 Big-ip Edge Gateway 13.0.0F5 Big-ip Global Traffic Manager 13.1.0F5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Link Controller 13.1.0F5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement Manager 13.1.0F5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Webaccelerator 13.1.0F5 Big-ip Webaccelerator 13.0.0
6.5
CVSSv2
CVE-2018-5523
On F5 BIG-IP 13.1.0-13.1.0.3, 13.0.0, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 and Enterprise Manager 3.1.1, when authenticated administrative users run commands in the Traffic Management User Interface (TMUI), also referred to as the BIG-IP Configuration utilit...
F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 11.2.1F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 13.1.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security Manager 11.2.1F5 Big-ip Application Security Manager
5
CVSSv2
CVE-2017-6153
Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "Zip Bomb" attack.
F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Analytics 13.1.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 11.2.1F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Application Security Manager
4.9
CVSSv2
CVE-2022-25946
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP Advanced WAF, ASM, and ASM, and F5 BIG-IP Guided Configuration (GC) all versions before 9.0, when running in Appliance mode, an authenticated attacker with Administrator role privilege may be able ...
F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Application Security Manager 15.1.0F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Advanced Web Application Firewall 15.1.0F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Advanced Web Application Firewall 14.1.4F5 Big-ip Application Security Manager 14.1.4F5 Big-ip Access Policy Manager 13.1.1F5 Big-ip Access Policy Manager 13.1.3F5 Big-ip Access Policy Manager 13.1.4F5 Big-ip Access Policy Manager 13.1.5F5 Big-ip Access Policy Manager 14.1.2F5 Big-ip Access Policy Manager 14.1.3F5 Big-ip Access Policy Manager 15.1.1F5 Big-ip Access Policy Manager 15.1.2F5 Big-ip Access Policy Manager 15.1.3F5 Big-ip Access Policy Manager 15.1.4F5 Big-ip Access Policy Manager 15.1.5F5 Big-ip Access Policy Manager 16.1.0
6
CVSSv2
CVE-2022-27806
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP Advanced WAF, ASM, and ASM, and F5 BIG-IP Guided Configuration (GC) all versions before 9.0, when running in Appliance mode, an authenticated attacker assigned the Administrator role may be able to...
F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Application Security Manager 15.1.0F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Advanced Web Application Firewall 15.1.0F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Advanced Web Application Firewall 14.1.4F5 Big-ip Application Security Manager 14.1.4F5 Big-ip Access Policy Manager 13.1.1F5 Big-ip Access Policy Manager 13.1.3F5 Big-ip Access Policy Manager 13.1.4F5 Big-ip Access Policy Manager 13.1.5F5 Big-ip Access Policy Manager 14.1.2F5 Big-ip Access Policy Manager 14.1.3F5 Big-ip Access Policy Manager 15.1.1F5 Big-ip Access Policy Manager 15.1.2F5 Big-ip Access Policy Manager 15.1.3F5 Big-ip Access Policy Manager 15.1.4F5 Big-ip Access Policy Manager 15.1.5F5 Big-ip Access Policy Manager 16.1.0
5
CVSSv2
CVE-2022-26890
On F5 BIG-IP Advanced WAF, ASM, and APM 16.1.x versions before 16.1.2.1, 15.1.x versions before 15.1.5, 14.1.x versions before 14.1.4.6, and 13.1.x versions before 13.1.5, when ASM or Advanced WAF, as well as APM, are configured on a virtual server, the ASM policy is configured w...
F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Application Security Manager 15.1.0F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Advanced Web Application Firewall 15.1.0F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Advanced Web Application Firewall 14.1.4F5 Big-ip Application Security Manager 14.1.4F5 Big-ip Access Policy Manager 13.1.1F5 Big-ip Access Policy Manager 13.1.3F5 Big-ip Access Policy Manager 13.1.4F5 Big-ip Access Policy Manager 13.1.5F5 Big-ip Access Policy Manager 14.1.2F5 Big-ip Access Policy Manager 14.1.3F5 Big-ip Access Policy Manager 15.1.1F5 Big-ip Access Policy Manager 15.1.2F5 Big-ip Access Policy Manager 15.1.3F5 Big-ip Access Policy Manager 15.1.4F5 Big-ip Access Policy Manager 15.1.5F5 Big-ip Access Policy Manager 16.1.0
5
CVSSv2
CVE-2022-29491
On F5 BIG-IP LTM, Advanced WAF, ASM, or APM 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5, 14.1.x versions before 14.1.4.6, and all versions of 13.1.x, 12.1.x, and 11.6.x, when a virtual server is configured with HTTP, TCP on one side (client/server), and DTLS on...
F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 11.6.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Access Policy Manager 14.1.4F5 Big-ip Access Policy Manager 15.1.0F5 Big-ip Access Policy Manager 16.1.0F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Application Security Manager 14.1.4F5 Big-ip Application Security Manager 15.1.0F5 Big-ip Application Security Manager 16.1.0
5
CVSSv2
CVE-2022-28705
On F5 BIG-IP 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5.1, 14.1.x versions before 14.1.4.6, and 13.1.x versions before 13.1.5, on platforms with an ePVA and the pva.fwdaccel BigDB variable enabled, undisclosed requests to a virtual server with a FastL4 profile...
F5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Analytics 13.1.0F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Global Traffic Manager 13.1.0F5 Big-ip Link Controller 13.1.0F5 Big-ip Policy Enforcement Manager 13.1.0F5 Big-ip Domain Name System 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Advanced Firewall Manager 14.1.0F5 Big-ip Advanced Firewall Manager 15.1.0F5 Big-ip Analytics 14.1.0F5 Big-ip Application Acceleration Manager 14.1.0F5 Big-ip Application Acceleration Manager 15.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Domain Name System 14.1.0F5 Big-ip Domain Name System 15.1.0F5 Big-ip Fraud Protection Service 13.1.0F5 Big-ip Fraud Protection Service 14.1.0F5 Big-ip Fraud Protection Service 15.1.0
5
CVSSv2
CVE-2022-28691
On F5 BIG-IP 16.1.x versions before 16.1.2.2, 15.1.x versions before 15.1.5, 14.1.x versions before 14.1.4.6, and 13.1.x versions before 13.1.5, when a Real Time Streaming Protocol (RTSP) profile is configured on a virtual server, undisclosed traffic can cause an increase in Traf...
F5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Analytics 13.1.0F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Global Traffic Manager 13.1.0F5 Big-ip Link Controller 13.1.0F5 Big-ip Policy Enforcement Manager 13.1.0F5 Big-ip Domain Name System 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Advanced Firewall Manager 14.1.0F5 Big-ip Advanced Firewall Manager 15.1.0F5 Big-ip Analytics 14.1.0F5 Big-ip Application Acceleration Manager 14.1.0F5 Big-ip Application Acceleration Manager 15.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Domain Name System 14.1.0F5 Big-ip Domain Name System 15.1.0F5 Big-ip Fraud Protection Service 13.1.0F5 Big-ip Fraud Protection Service 14.1.0F5 Big-ip Fraud Protection Service 15.1.0
6
CVSSv2
CVE-2022-27878
On all versions of 16.1.x, 15.1.x, 14.1.x, 13.1.x, 12.1.x, and 11.6.x of F5 BIG-IP, and F5 BIG-IP Guided Configuration (GC) all versions before 9.0, a stored cross-site scripting (XSS) vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an ...
F5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Analytics 13.1.0F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Application Security Manager 13.1.0F5 Big-ip Global Traffic Manager 13.1.0F5 Big-ip Link Controller 13.1.0F5 Big-ip Policy Enforcement Manager 13.1.0F5 Big-ip Domain Name System 13.1.0F5 Big-ip Access Policy Manager 14.1.0F5 Big-ip Advanced Firewall Manager 14.1.0F5 Big-ip Advanced Firewall Manager 15.1.0F5 Big-ip Analytics 14.1.0F5 Big-ip Application Acceleration Manager 14.1.0F5 Big-ip Application Acceleration Manager 15.1.0F5 Big-ip Application Security Manager 14.1.0F5 Big-ip Domain Name System 14.1.0F5 Big-ip Domain Name System 15.1.0F5 Big-ip Fraud Protection Service 13.1.0F5 Big-ip Fraud Protection Service 14.1.0F5 Big-ip Fraud Protection Service 15.1.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111CVE-2024-32884IDORCVE-2023-1000CVE-2024-33260CVE-2024-3682reflected XSSrace conditionCVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook