EUVD-2022-31437

🗓️ 03 Oct 2025 20:07:09Reported by EUVDType

F5 BIG-IP WAF and APM software versions have critical vulnerability causing process termination issue.

Reporter	Title	Published	Views	Family All 11
ATTACKERKB	CVE-2022-26890	4 May 202214:00	–	attackerkb
CNNVD	多款F5 BIG-IP产品安全漏洞	4 May 202200:00	–	cnnvd
CNVD	F5 BIG-IP has an unspecified vulnerability (CNVD-2022-77523)	7 May 202200:00	–	cnvd
CVE	CVE-2022-26890	5 May 202216:06	–	cve
Cvelist	CVE-2022-26890	5 May 202216:06	–	cvelist
F5 Networks	K03442392: BIG-IP ASM and Advanced WAF vulnerability CVE-2022-26890	21 Feb 202319:56	–	f5
Tenable Nessus	F5 Networks BIG-IP : BIG-IP ASM and Advanced WAF vulnerability (K03442392)	5 May 202200:00	–	nessus
NCSC	Vulnerabilities fixed in F5 products	6 May 202200:00	–	ncsc
NVD	CVE-2022-26890	5 May 202217:15	–	nvd
OSV	CVE-2022-26890	5 May 202217:15	–	osv

[
  {
    "enisaIdVendor": [
      {
        "id": "1b6060a0-f565-3eda-92a7-7d52109356cb",
        "vendor": {
          "name": "F5"
        }
      }
    ],
    "enisaIdProduct": [
      {
        "id": "09de3891-b6cd-3711-8007-769f7268f019",
        "product": {
          "name": "BIG-IP Advanced WAF, ASM, and APM"
        },
        "product_version": "15.1.x <15.1.5"
      },
      {
        "id": "62cbdb39-d463-3146-864d-236eea91c78a",
        "product": {
          "name": "BIG-IP Advanced WAF, ASM, and APM"
        },
        "product_version": "13.1.x <13.1.5"
      },
      {
        "id": "7ab6ace6-7e7e-334d-b73a-69421afcfdf2",
        "product": {
          "name": "BIG-IP Advanced WAF, ASM, and APM"
        },
        "product_version": "14.1.x <14.1.4.6"
      },
      {
        "id": "cfc3cd6d-4281-335c-bd66-5e3b6fca4785",
        "product": {
          "name": "BIG-IP Advanced WAF, ASM, and APM"
        },
        "product_version": "16.1.x <16.1.2.1"
      }
    ]
  }
]

Source	Link
support	www.support.f5.com/csp/article/K03442392

03 Oct 2025 20:07Current

7.5High risk

Vulners AI Score7.5

CVSS 3.17.5

CVSS 25

EPSS0.00891