F5 Networks Inc Big-Ip vulnerabilities

26 known vulnerabilities affecting f5_networks_inc/big-ip.

Total CVEs
26
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH13MEDIUM12LOW1

Vulnerabilities

Page 2 of 2
CVE-2018-5503HIGHCVSS 7.5v13.0.0 - 13.1.0.3v12.0.0 - 12.1.3.12018-03-22
CVE-2018-5503 [HIGH] CWE-20 CVE-2018-5503: On F5 BIG-IP versions 13.0.0 - 13.1.0.3 or 12.0.0 - 12.1.3.1, TMM may restart when processing a spec On F5 BIG-IP versions 13.0.0 - 13.1.0.3 or 12.0.0 - 12.1.3.1, TMM may restart when processing a specifically crafted page through a virtual server with an associated PEM policy that has content insertion as an action.
cvelistv5nvd
CVE-2018-5505MEDIUMCVSS 5.9v13.1.0 - 13.1.0.32018-03-22
CVE-2018-5505 [MEDIUM] CVE-2018-5505: On F5 BIG-IP versions 13.1.0 - 13.1.0.3, when ASM and AVR are both provisioned, TMM may restart whil On F5 BIG-IP versions 13.1.0 - 13.1.0.3, when ASM and AVR are both provisioned, TMM may restart while processing DNS requests when the virtual server is configured with a DNS profile and the Protocol setting is set to TCP.
cvelistv5nvd
CVE-2016-9250HIGHCVSS 7.5v11.2.1v11.4.0-11.6.1+1 more2017-05-10
CVE-2016-9250 [HIGH] CWE-264 CVE-2016-9250: In F5 BIG-IP 11.2.1, 11.4.0 through 11.6.1, and 12.0.0 through 12.1.2, an unauthenticated user with In F5 BIG-IP 11.2.1, 11.4.0 through 11.6.1, and 12.0.0 through 12.1.2, an unauthenticated user with access to the control plane may be able to delete arbitrary files through an undisclosed mechanism.
cvelistv5nvd
CVE-2016-9251HIGHCVSS 8.8v12.0.0 - 12.1.22017-05-09
CVE-2016-9251 [HIGH] CWE-264 CVE-2016-9251: In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of In F5 BIG-IP 12.0.0 through 12.1.2, an authenticated attacker may be able to cause an escalation of privileges through a crafted iControl REST connection.
cvelistv5nvd
CVE-2016-9253HIGHCVSS 7.5v12.1.0-12.1.22017-05-09
CVE-2016-9253 [HIGH] CWE-20 CVE-2016-9253: In F5 BIG-IP 12.1.0 through 12.1.2, specific websocket traffic patterns may cause a disruption of se In F5 BIG-IP 12.1.0 through 12.1.2, specific websocket traffic patterns may cause a disruption of service for virtual servers configured to use the websocket profile.
cvelistv5nvd
CVE-2016-9256HIGHCVSS 7.5v12.1.0-12.1.22017-05-09
CVE-2016-9256 [HIGH] CWE-362 CVE-2016-9256: In F5 BIG-IP 12.1.0 through 12.1.2, permissions enforced by iControl can lag behind the actual permi In F5 BIG-IP 12.1.0 through 12.1.2, permissions enforced by iControl can lag behind the actual permissions assigned to a user if the role_map is not reloaded between the time the permissions are changed and the time of the user's next request. This is a race condition that occurs rarely in normal usage; the typical period in which this is possible is li
cvelistv5nvd
← Previous2 / 2