Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip pem vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2017-6168
On BIG-IP versions 11.6.0-11.6.2 (fixed in 11.6.2 HF1), 12.0.0-12.1.2 HF1 (fixed in 12.1.2 HF2), or 13.0.0-13.0.0 HF2 (fixed in 13.0.0 HF3) a virtual server configured with a Client SSL profile may be vulnerable to an Adaptive Chosen Ciphertext attack (AKA Bleichenbacher attack) ...
F5 Big-ip LtmF5 Big-ip Ltm 13.0.0F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip AfmF5 Big-ip Afm 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip ApmF5 Big-ip Apm 13.0.0F5 Big-ip AsmF5 Big-ip Asm 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Pem 13.0.0F5 Big-ip PemF5 Websafe 13.0.0F5 WebsafeF5 Websafe 11.6.2
4.3
CVSSv2
CVE-2017-6166
In BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM, and WebSafe software 12.0.0 to 12.1.1, in some cases the Traffic Management Microkernel (TMM) may crash when processing fragmented packets. This vulnerability affects TMM through a virtual server configured ...
F5 Big-ip ApmF5 Big-ip AnalyticsF5 Big-ip PemF5 Big-ip Link ControllerF5 Big-ip LtmF5 LinerateF5 F5 WebsafeF5 Big-ip AfmF5 Big-ip Application Acceleration ManagerF5 Big-ip DnsF5 Big-ip Asm
7.8
CVSSv2
CVE-2017-6133
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, undisclosed HTTP requests may cause a denial of service.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link ControllerF5 Big-ip Link Controller 13.0.0F5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
8.5
CVSSv2
CVE-2017-6167
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Link Controller, PEM and WebSafe software version 13.0.0 and 12.1.0 - 12.1.2, race conditions in iControl REST may lead to commands being executed with different privilege levels than expected.
F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip DnsF5 Big-ip Dns 13.0.0F5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip WebsafeF5 Big-ip Websafe 13.0.0
5
CVSSv2
CVE-2017-6153
Features in F5 BIG-IP 13.0.0-13.1.0.3, 12.1.0-12.1.3.1, 11.6.1-11.6.3.1, 11.5.1-11.5.5, or 11.2.1 system that utilizes inflate functionality directly, via an iRule, or via the inflate code from PEM module are subjected to a service disruption via a "Zip Bomb" attack.
F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager 13.1.0F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.1.0F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Advanced Firewall Manager 13.1.0F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Analytics 13.1.0F5 Big-ip Analytics 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 11.2.1F5 Big-ip Access Policy Manager 13.1.0F5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Application Security Manager 13.0.0F5 Big-ip Application Security Manager
4.3
CVSSv2
CVE-2014-9326
The automatic signature update functionality in the (1) Phone Home feature in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, GTM, and Link Controller 11.5.0 up to and including 11.6.0, ASM 10.0.0 up to and including 11.6.0, and PEM 11.3.0 up to and including 11.6.0 and the (2) Call Hom...
F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Policy Enforcement Manager 11.5.0F5 Big-ip Policy Enforcement Manager11.5.1F5 Big-ip Policy Enforcement Manager 11.5.2F5 Big-ip Policy Enforcement Manager 11.6.0F5 Big-ip Policy Enforcement Manager 11.3.0F5 Big-ip Policy Enforcement Manager 11.4.0F5 Big-ip Policy Enforcement Manager 11.4.1F5 Big-ip Global Traffic Manager 11.6.0F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 11.5.0
3.3
CVSSv2
CVE-2017-6134
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and WebSafe software version 13.0.0, 12.1.0 - 12.1.2 and 11.5.1 - 11.6.1, an undisclosed sequence of packets, sourced from an adjacent network may cause TMM to crash.
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip AnalyticsF5 Big-ip Analytics 13.0.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 13.0.0F5 Big-ip Application Security ManagerF5 Big-ip Application Security Manager 13.0.0F5 Big-ip Dns 13.0.0F5 Big-ip DnsF5 Big-ip Global Traffic Manager 13.0.0F5 Big-ip Global Traffic ManagerF5 Big-ip Link Controller 13.0.0F5 Big-ip Link ControllerF5 Big-ip Policy Enforcement ManagerF5 Big-ip Policy Enforcement Manager 13.0.0F5 Big-ip Websafe 13.0.0F5 Big-ip Websafe
6.1
CVSSv2
CVE-2015-6546
The vCMP host in F5 BIG-IP Analytics, APM, ASM, GTM, Link Controller, and LTM 11.0.0 prior to 11.6.0, BIG-IP AAM 11.4.0 prior to 11.6.0, BIG-IP AFM and PEM 11.3.0 prior to 11.6.0, BIG-IP Edge Gateway, WebAccelerator, and WOM 11.0.0 up to and including 11.3.0, BIG-IP PSM 11.0.0 up...
F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Global Traffic Manager 11.0.0F5 Big-ip Global Traffic Manager 11.4.0F5 Big-ip Global Traffic Manager 11.4.1F5 Big-ip Global Traffic Manager 11.5.0F5 Big-ip Global Traffic Manager 11.5.1F5 Big-ip Global Traffic Manager 11.1.0F5 Big-ip Global Traffic Manager 11.2.1F5 Big-ip Global Traffic Manager 11.5.3F5 Big-ip Global Traffic Manager 11.2.0F5 Big-ip Global Traffic Manager 11.3.0F5 Big-ip Global Traffic Manager 11.5.2F5 Big-ip Access Policy Manager 11.1.0F5 Big-ip Access Policy Manager 11.2.0F5 Big-ip Access Policy Manager 11.2.1F5 Big-ip Access Policy Manager 11.3.0F5 Big-ip Access Policy Manager 11.5.3
6.8
CVSSv2
CVE-2017-6164
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, WebAccelerator and WebSafe software version 13.0.0, 12.0.0 - 12.1.2, 11.6.0 - 11.6.1 and 11.5.0 - 11.5.4, in some circumstances, Traffic Management Microkernel (TMM) does not properly h...
F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.5.3F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Analytics
5
CVSSv2
CVE-2017-6132
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 13.0.0, 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 and 11.5.0 - 11.5.4, an undisclosed sequence of packets sent to BIG-IP High Availability state mirror listeners (primary and/or ...
F5 Big-ip Local Traffic Manager 11.5.4F5 Big-ip Local Traffic Manager 13.0.0F5 Big-ip Local Traffic Manager 11.5.0F5 Big-ip Local Traffic Manager 11.5.1F5 Big-ip Local Traffic Manager 11.5.2F5 Big-ip Local Traffic Manager 11.5.3F5 Big-ip Local Traffic ManagerF5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Application Acceleration Manager 13.0.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Advanced Firewall Manager 11.5.4F5 Big-ip Advanced Firewall Manager 13.0.0F5 Big-ip Advanced Firewall Manager 11.5.0F5 Big-ip Advanced Firewall Manager 11.5.1F5 Big-ip Advanced Firewall Manager 11.5.2F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.5.3F5 Big-ip Analytics 11.5.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654CVE-2024-2757authentication bypassCVE-2024-3194CVE-2024-33640CVE-2024-21111dosinsecure direct object referenceCVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook