Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip ltm vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2017-6168
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) ...
F5 Big-ip LtmF5 Big-ip Ltm 13.0.0F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip AfmF5 Big-ip Afm 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip ApmF5 Big-ip Apm 13.0.0F5 Big-ip AsmF5 Big-ip Asm 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Pem 13.0.0F5 Big-ip PemF5 Websafe 13.0.0F5 WebsafeF5 Websafe 11.6.2
4.3
CVSSv2
CVE-2017-6166
In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server configured ...
F5 Big-ip ApmF5 Big-ip AnalyticsF5 Big-ip PemF5 Big-ip Link ControllerF5 Big-ip LtmF5 LinerateF5 F5 WebsafeF5 Big-ip AfmF5 Big-ip Application Acceleration ManagerF5 Big-ip DnsF5 Big-ip Asm
5
CVSSv2
CVE-2017-6138
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, re...
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Dns 13.0.0F5 Big-ip DnsF5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Policy Enforcement ManagerF5 Big-ip Websafe 13.0.0F5 Big-ip Websafe
7.8
CVSSv2
CVE-2017-6133
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
8.5
CVSSv2
CVE-2017-6167
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, race conditions in iControl REST may lead to commands being executed with different privilege levels than expected.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
3.3
CVSSv2
CVE-2017-6134
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash.
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 13.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip Dns 13.0.0F5 Big-ip DnsF5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Websafe 13.0.0F5 Big-ip Websafe
6.1
CVSSv2
CVE-2015-6546
The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 prior to 11.6.0, BIG-IP AAM 11.4.0 prior to 11.6.0, BIG-IP AFM and PEM 11.3.0 prior to 11.6.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.0.0 up to and including 11.3.0, BIG-IP PSM 11.0.0 up...
F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Global Traffic Manager 11.0.0F5 Big-ip Global Traffic Manager 11.4.0F5 Big-ip Global Traffic Manager 11.4.1F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.1.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.5.3F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Global Traffic Manager 11.3.0F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.2.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 11.5.3
6.8
CVSSv2
CVE-2017-6164
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software version 13.0.0, 12.0.0 - 12.1.2, 11.6.0 - 11.6.1 and 11.5.0 - 11.5.4, in some circumstances, Traffic Management Microkernel (TMM) does not properly h...
F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.5.3F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Analytics
7.8
CVSSv2
CVE-2018-15319
On BIG-IP 14.0.0-14.0.0.2, 13.0.0-13.1.1.1, or 12.1.0-12.1.3.6, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with the non-default "normalize URI" configuration options used in iRules and/or BIG-IP LTM...
F5 Big-ip Local Traffic ManagerF5 Big-ip Advanced Firewall ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Protocol Security ModuleF5 Big-ip Domain Name SystemF5 Big-ip Edge GatewayF5 Big-ip Fraud Protection ServiceF5 Big-ip Global Traffic ManagerF5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Webaccelerator
5
CVSSv2
CVE-2017-6132
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 13.0.0, 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 and 11.5.0 - 11.5.4, an undisclosed sequence of packets sent to BIG-IP High Availability state mirror listeners (primary and/or ...
F5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.5.3F5 Big-ip Analytics 11.5.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
race conditionCVE-2024-4249CVE-2024-4244CVE-2023-20198TCPCVE-2022-48648CVE-2022-48636CVE-2024-21345SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook