Security Advisory Description
F5 discloses security vulnerabilities and security exposures for F5 products in Quarterly Security Notifications.
Quarterly Security Notification dates are published in advance so customers can schedule necessary updates in advance of the public disclosure date.
When it is necessary to disclose vulnerabilities at any time other than the scheduled Quarterly Security Notification, F5 will notify customers through an F5 Security Announcement, which will include links to Security Advisory articles containing detailed descriptions and steps to address the issue.
To sign up for F5 Security Announcements, including Quarterly Security Notifications, refer to the F5 Customer Preference Center.
Fixes for security issues will continue to be included in sustaining releases across F5 products. F5 recommends that customers always run the most current release to optimize the security and performance of their system. For information on the latest available software versions, refer to K2200: Most recent versions of F5 software.
Scheduled Quarterly Security Notifications
Scheduled Quarterly Security Notification | Reference article |
---|---|
August 14, 2024 | |
May 8, 2024 | K000139404: Quarterly Security Notification (May 2024) |
February 14, 2024 | K000138353: Quarterly Security Notification (February 2024) |
October 10, 2023 | K000137053: Overview of F5 vulnerabilities (October 2023) |
August 2, 2023 | K000135479: Overview of F5 vulnerabilities (August 2023) |
May 3, 2023 | K000133251: Overview of F5 vulnerabilities (May 2023) |
February 1, 2023 | K000130496: Overview of F5 vulnerabilities (February 2023) |
October 19, 2022 | K30425568: Overview of F5 vulnerabilities (October 2022) |
August 3, 2022 | K14649763: Overview of F5 vulnerabilities (August 2022) |
May 4, 2022 | K55879220: Overview of F5 vulnerabilities (May 2022) |
January 19, 2022 | K40084114: Overview of F5 vulnerabilities (January 2022) |
Note: If the most recent scheduled Quarterly Security Notification date has already occurred, then no date has been scheduled for the next notification.
Note: If no link is published in theReference article column, the reference article for the next scheduled notification has not been published.
Note: F5 Support has no additional information regarding Quarterly Security Notification dates that have not yet been scheduled.
Additional Security Announcements
Security Announcement | Reference article |
---|---|
May 29, 2024 | K000139628: Out-of-band Security Notification (May 29, 2024) |
October 26, 2023 | K000137368: Overview of F5 vulnerabilities (October 26, 2023) |
November 16, 2022 | K97843387: Overview of F5 vulnerabilities (November 2022) |
For more information about this change and the F5 vulnerability management policy, refer to K4602: Overview of the F5 security vulnerability response policy.
CPE | Name | Operator | Version |
---|---|---|---|
big-ip apm | eq | 13.1.0 | |
big-ip apm | eq | 13.1.1 | |
big-ip apm | eq | 13.1.3 | |
big-ip apm | eq | 13.1.4 | |
big-ip apm | eq | 13.1.5 | |
big-ip apm | eq | 14.1.0 | |
big-ip apm | eq | 14.1.2 | |
big-ip apm | eq | 14.1.3 | |
big-ip apm | eq | 14.1.4 | |
big-ip apm | eq | 14.1.5 |