Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

f5 big-ip application acceleration manager 12.1.1 vulnerabilities and exploits

(subscribe to this query)
4.3
CVSSv2
CVE-2017-6160
In F5 BIG-IP AAM and PEM software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.4.1 to 11.5.4, a remote attacker may create maliciously crafted HTTP request to cause Traffic Management Microkernel (TMM) to restart and temporarily fail to process traffic. This issue is exposed on...
F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.4.1F5 Big-ip Application Acceleration Manager 11.5.4F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 11.5.3F5 Big-ip Application Acceleration Manager 11.5.2F5 Big-ip Application Acceleration Manager 11.5.1F5 Big-ip Application Acceleration Manager 11.5.0F5 Big-ip Application Acceleration Manager 11.4.0F5 Big-ip Application Acceleration Manager 11.5.5F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Policy Enforcement Manager 11.4.0F5 Big-ip Policy Enforcement Manager 11.4.1F5 Big-ip Policy Enforcement Manager 12.1.0F5 Big-ip Policy Enforcement Manager 12.0.0F5 Big-ip Policy Enforcement Manager 11.6.0F5 Big-ip Policy Enforcement Manager 12.1.1F5 Big-ip Policy Enforcement Manager 11.5.4F5 Big-ip Policy Enforcement Manager 11.5.3F5 Big-ip Policy Enforcement Manager 11.5.2
4.3
CVSSv2
CVE-2017-6141
In F5 BIG-IP LTM, AAM, AFM, APM, ASM, Link Controller, PEM, and WebSafe 12.1.0 up to and including 12.1.2, certain values in a TLS abbreviated handshake when using a client SSL profile with the Session Ticket option enabled may cause disruption of service to the Traffic Managemen...
F5 Big-ip Link Controller 12.1.0F5 Big-ip Link Controller 12.1.1F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Websafe 12.1.0F5 Big-ip Websafe 12.1.2F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Policy Enforcement Manager 12.1.0F5 Big-ip Policy Enforcement Manager 12.1.1F5 Big-ip Policy Enforcement Manager 12.1.2F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Link Controller 12.1.2F5 Big-ip Websafe 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0
4.3
CVSSv2
CVE-2016-5024
Virtual servers in F5 BIG-IP systems 11.6.1 prior to 11.6.1 HF1 and 12.1.x prior to 12.1.2, when configured to parse RADIUS messages via an iRule, allow remote malicious users to cause a denial of service (Traffic Management Microkernel restart) via crafted network traffic.
F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Analytics 12.1.1F5 Big-ip Analytics 11.6.1F5 Big-ip Analytics 12.1.0F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 11.6.1F5 Big-ip Domain Name System 12.1.1F5 Big-ip Domain Name System 12.1.0F5 Big-ip Global Traffic Manager 11.6.1F5 Big-ip Link Controller 12.1.1
4.3
CVSSv2
CVE-2016-9247
Under certain conditions for BIG-IP systems using a virtual server with an associated FastL4 profile and TCP analytics profile, a specific sequence of packets may cause the Traffic Management Microkernel (TMM) to restart.
F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Analytics 12.1.0F5 Big-ip Analytics 12.1.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Domain Name System 12.1.0F5 Big-ip Domain Name System 12.1.1F5 Big-ip Link Controller 12.1.0F5 Big-ip Link Controller 12.1.1F5 Big-ip Policy Enforcement Manager 12.1.0F5 Big-ip Policy Enforcement Manager 12.1.1F5 Big-ip Websafe 12.1.1F5 Big-ip Websafe 12.1.0
6.8
CVSSv2
CVE-2017-6157
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM and Websafe software version 12.0.0 to 12.1.1, 11.6.0 to 11.6.1, 11.5.0 - 11.5.4, virtual servers with a configuration using the HTTP Explicit Proxy functionality and/or SOCKS profile are vulnerable t...
F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy ManagerF5 Big-ip Access Policy Manager 11.6.0
7.8
CVSSv2
CVE-2016-9249
An undisclosed traffic pattern received by a BIG-IP Virtual Server with TCP Fast Open enabled may cause the Traffic Management Microkernel (TMM) to restart, resulting in a Denial-of-Service (DoS).
F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Analytics 12.1.1F5 Big-ip Analytics 12.0.0F5 Big-ip Analytics 12.1.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.0.0F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Application Security Manager 12.0.0F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Domain Name System 12.1.1F5 Big-ip Domain Name System 12.0.0F5 Big-ip Domain Name System 12.1.0F5 Big-ip Link Controller 12.1.1
4.3
CVSSv2
CVE-2016-9245
In F5 BIG-IP systems 12.1.0 - 12.1.2, malicious requests made to virtual servers with an HTTP profile can cause the TMM to restart. The issue is exposed with BIG-IP APM profiles, regardless of settings. The issue is also exposed with the non-default "Normalize URI" conf...
F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Analytics 12.1.2F5 Big-ip Analytics 12.1.0F5 Big-ip Analytics 12.1.1F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Domain Name System 12.1.1F5 Big-ip Domain Name System 12.1.2F5 Big-ip Domain Name System 12.1.0F5 Big-ip Link Controller 12.1.2
5
CVSSv2
CVE-2016-9253
In F5 BIG-IP 12.1.0 up to and including 12.1.2, specific websocket traffic patterns may cause a disruption of service for virtual servers configured to use the websocket profile.
F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Analytics 12.1.1F5 Big-ip Analytics 12.1.0F5 Big-ip Analytics 12.1.2F5 Big-ip Access Policy Manager 12.1.2F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.1.1F5 Big-ip Application Security Manager 12.1.2F5 Big-ip Application Security Manager 12.1.0F5 Big-ip Application Security Manager 12.1.1F5 Big-ip Domain Name System 12.1.1F5 Big-ip Domain Name System 12.1.0F5 Big-ip Domain Name System 12.1.2F5 Big-ip Link Controller 12.1.2
4.3
CVSSv2
CVE-2017-6162
In F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, Edge Gateway, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1, 11.4.0 to 11.5.4, 11.2.1, in some cases TMM may crash when processing TCP traffic. This vulnerability affects TMM via a virt...
F5 Big-ip Local Traffic Manager 11.2.1F5 Big-ip Local Traffic ManagerF5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Application Acceleration Manager 11.2.1F5 Big-ip Application Acceleration ManagerF5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Advanced Firewall Manager 11.2.1F5 Big-ip Advanced Firewall ManagerF5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Access Policy Manager 11.2.1
4.3
CVSSv2
CVE-2017-6159
F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, DNS, GTM, Link Controller, PEM, Websafe software version 12.0.0 to 12.1.2, 11.6.0 to 11.6.1 are vulnerable to a denial of service attack when the MPTCP option is enabled on a virtual server. Data plane is vulnerable when using the MPT...
F5 Big-ip Local Traffic Manager 11.6.0F5 Big-ip Local Traffic Manager 12.0.0F5 Big-ip Local Traffic Manager 12.1.1F5 Big-ip Local Traffic Manager 12.1.2F5 Big-ip Local Traffic Manager 11.6.1F5 Big-ip Local Traffic Manager 12.1.0F5 Big-ip Application Acceleration Manager 11.6.1F5 Big-ip Application Acceleration Manager 12.1.0F5 Big-ip Application Acceleration Manager 12.1.2F5 Big-ip Application Acceleration Manager 11.6.0F5 Big-ip Application Acceleration Manager 12.0.0F5 Big-ip Application Acceleration Manager 12.1.1F5 Big-ip Advanced Firewall Manager 12.1.2F5 Big-ip Advanced Firewall Manager 12.1.0F5 Big-ip Advanced Firewall Manager 12.0.0F5 Big-ip Advanced Firewall Manager 11.6.0F5 Big-ip Advanced Firewall Manager 11.6.1F5 Big-ip Advanced Firewall Manager 12.1.1F5 Big-ip Access Policy Manager 12.1.0F5 Big-ip Access Policy Manager 12.0.0F5 Big-ip Access Policy Manager 11.6.1F5 Big-ip Access Policy Manager 11.6.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionCVE-2006-4304CVE-2023-26603CVE-2024-28327CVE-2023-50363CVE-2024-21905template injectionCVE-2024-3400cross-site request forgery
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook