Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip local traffic manager 11.6.1 vulnerabilities and exploits

(subscribe to this query)
890
VMScore
CVE-2016-5745
F5 BIG-IP LTM systems 11.x prior to 11.2.1 HF16, 11.3.x, 11.4.x prior to 11.4.1 HF11, 11.5.0, 11.5.1 before HF11, 11.5.2, 11.5.3, 11.5.4 before HF2, 11.6.0 before HF8, 11.6.1 before HF1, 12.0.0 before HF4, and 12.1.0 before HF2 allow remote malicious users to modify or extract sy...
F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 11.4.0F5 Big-ip Local Traffic Manager 11.4.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 11.0.0F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic Manager 11.3.0F5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 11.1.0F5 Big-ip Local Traffic Manager 11.2.0F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.5.3
383
VMScore
CVE-2016-5024
Virtual servers in F5 BIG-IP systems 11.6.1 prior to 11.6.1 HF1 and 12.1.x prior to 12.1.2, when configured to parse RADIUS messages via an iRule, allow remote malicious users to cause a denial of service (Traffic Management Microkernel restart) via crafted network traffic.
F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Analytics 12.1.1F5 Big-ip Analytics 11.6.1F5 Big-ip Analytics 12.1.0F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 11.6.1F5 Big-ip Domain Name System 12.1.1F5 Big-ip Domain Name System 12.1.0F5 Big-ip Global Traffic Manager 11.6.1F5 Big-ip Link Controller 12.1.1
384
VMScore
CVE-2019-6593
On BIG-IP 11.5.1-11.5.4, 11.6.1, and 12.1.0, a virtual server configured with a Client SSL profile may be vulnerable to a chosen ciphertext attack against CBC ciphers. When exploited, this may result in plaintext recovery of encrypted messages through a man-in-the-middle (MITM) a...
F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy ManagerF5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic ManagerF5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Analytics 11.6.1F5 Big-ip Analytics 12.1.0F5 Big-ip AnalyticsF5 Big-ip Application Security Manager 11.6.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security ManagerF5 Big-ip Domain Name System 11.6.1F5 Big-ip Domain Name SystemF5 Big-ip Domain Name System 12.1.0F5 Big-ip Edge Gateway 12.1.0F5 Big-ip Edge Gateway 11.6.1F5 Big-ip Edge GatewayF5 Big-ip Fraud Protection Service 12.1.0
534
VMScore
CVE-2017-6156
When the F5 BIG-IP 12.1.0-12.1.1, 11.6.0-11.6.1, 11.5.1-11.5.5, or 11.2.1 system is configured with a wildcard IPSec tunnel endpoint, it may allow a remote malicious user to disrupt or impersonate the tunnels that have completed phase 1 IPSec negotiations. The attacker must posse...
F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Analytics 11.6.1F5 Big-ip Analytics 11.2.1F5 Big-ip AnalyticsF5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 11.2.1F5 Big-ip Application Security Manager 11.6.1F5 Big-ip Edge GatewayF5 Big-ip Edge Gateway 11.2.1F5 Big-ip Edge Gateway 11.6.1F5 Big-ip Global Traffic Manager 11.2.1
445
VMScore
CVE-2018-5506
In F5 BIG-IP 13.0.0, 12.1.0-12.1.2, 11.6.1, 11.5.1-11.5.5, or 11.2.1 the Apache modules apache_auth_token_mod and mod_auth_f5_auth_token.cpp allow possible unauthenticated bruteforce on the em_server_ip authorization parameter to obtain which SSL client certificates used for mutu...
F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Analytics 11.6.1F5 Big-ip Analytics 11.2.1F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 11.2.1
605
VMScore
CVE-2017-6157
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.5.0 - 11.5.4, virtual servers with a configuration using the HTTP Explicit Proxy functionality and/or SOCKS profile are vulnerable t...
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 11.6.0
383
VMScore
CVE-2017-6162
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, 11.2.1, in some cases TMM may crash when processing TCP traffic. This vulnerability affects TMM via a virt...
F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Access Policy Manager 11.2.1
383
VMScore
CVE-2017-6159
F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 are vulnerable to a denial of service attack when the MPTCP option is enabled on a virtual server. Data plane is vulnerable when using the MPT...
F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.0.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 11.6.0
383
VMScore
CVE-2017-6137
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, PSM, WebAccelerator, and WebSafe 11.6.1 HF1, 12.0.0 HF3, 12.0.0 HF4, and 12.1.0 up to and including 12.1.2, undisclosed traffic patterns received while software SYN cookie protection is...
F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Analytics 12.0.0F5 Big-ip Analytics 12.1.0F5 Big-ip Analytics 12.1.1F5 Big-ip Analytics 12.1.2F5 Big-ip Analytics 11.6.1F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2
187
VMScore
CVE-2016-6249
F5 BIG-IP 12.0.0 and 11.5.0 - 11.6.1 REST requests which timeout during user account authentication may log sensitive attributes such as passwords in plaintext to /var/log/restjavad.0.log. It may allow local users to obtain sensitive information by reading these files.
F5 Big-ip Websafe 11.5.4F5 Big-ip Websafe 11.6.0F5 Big-ip Policy Enforcement Manager 11.5.2F5 Big-ip Policy Enforcement Manager 11.5.1F5 Big-ip Application Security Manager 11.5.4F5 Big-ip Application Security Manager 11.6.0F5 Big-ip Access Policy Manager 11.5.4F5 Big-ip Link Controller 11.6.1F5 Big-ip Analytics 11.5.4F5 Big-ip Analytics 11.6.0F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Link Controller 11.5.0F5 Big-ip Websafe 11.5.2F5 Big-ip Websafe 11.5.3F5 Big-ip Policy Enforcement Manager 11.5.4
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionfirmwareCVE-2006-4304CVE-2024-32878CVE-2024-31502XSSCVE-2024-3059CVE-2024-33692CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook