EUVD-2026-29971

When a BIG-IP APM access policy is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2026-40067

BIG-IP APM CVE-2026-40067 affects BIG-IP APM with vulnerable 21.x releases (e.g., 21.0.0 exposed). The issue occurs when an access policy is configured on a virtual server, allowing undisclosed traffic to trigger a denial-of-service by terminating the apmd process. The F5 advisory classifies this...

PT-2026-40645

Name of the Vulnerable Software and Affected Versions BIG-IP APM affected versions not specified Description Undisclosed traffic can cause the apmd process to terminate when a BIG-IP APM access policy is configured on a virtual server. Recommendations At the moment, there is no information about ...

CVE-2025-54854

When a BIG-IP APM OAuth access profile Resource Server or Resource Client is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

EUVD-2025-34628

When a BIG-IP APM OAuth access profile Resource Server or Resource Client is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-54854

When a BIG-IP APM OAuth access profile Resource Server or Resource Client is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-54854

CVE-2025-54854 affects BIG-IP APM when an OAuth access profile (Resource Server or Resource Client) is configured on a virtual server, potentially causing the apmd process to terminate and DoS disruption. Public details indicate vulnerable BIG-IP APM versions include 17.x branches, with fixes int...

CVE-2025-47148 BIG-IP APM and SSL Orchestrator vulnerability

When the BIG-IP system is configured as both a Security Assertion Markup Language SAML service provider SP and Identity Provider IdP, with single logout SLO enabled on an access policy, undisclosed requests can cause an increase in memory resource utilization. Note: Software versions which have...

K000156602: BIG-IP APM vulnerability CVE-2025-54854

Security Advisory Description When a BIG-IP APM OAuth access profile Resource Server or Resource Client is configured on a virtual server, undisclosed traffic can cause the apmd process to terminate. CVE-2025-54854 Impact Traffic is disrupted while the apmd process restarts. This vulnerability...

K000148816: BIG-IP APM and SSL Orchestrator vulnerability CVE-2025-47148

Security Advisory Description When the BIG-IP system is configured as both a Security Assertion Markup Language SAML service provider SP and Identity Provider IdP, with single logout SLO enabled on an access policy, undisclosed requests can cause an increase in memory resource utilization...

F5 Networks BIG-IP : BIG-IP APM vulnerability (K000156741)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156741 advisory. When a BIG-IP APM access policy is configured on a virtual server, specific malicious traffi...

F5 Networks BIG-IP : BIG-IP APM vulnerability (K000156602)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.8 / 16.1.6.1 / 17.1.3 / 17.5.1.3. It is, therefore, affected by a vulnerability as referenced in the K000156602 advisory. When a BIG-IP APM OAuth access profile Resource Server or Resource Client is configured on a...

EUVD-2015-7917

Malware in sbrugna...

EUVD-2019-16154

Malware in sbrugna...

EUVD-2025-24582

Malicious code in bioql PyPI...

EUVD-2022-31437

Malicious code in bioql PyPI...

CVE-2025-46405 BIG-IP APM vulnerability

When Network Access is configured on a BIG-IP APM virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-46405 BIG-IP APM vulnerability

When Network Access is configured on a BIG-IP APM virtual server, undisclosed traffic can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

CVE-2025-48500 BIG-IP APM VPN web client for macOS vulnerability

A missing file integrity check vulnerability exists on MacOS F5 VPN browser client installer that may allow a local, authenticated attacker with access to the local file system to replace it with a malicious package installer. Note: Software versions which have reached End of Technical Support...

CVE-2025-46405

Summary: CVE-2025-46405 affects BIG-IP APM. When Network Access is configured on an APM virtual server, undisclosed traffic can cause the Traffic Management Microkernel (TMM) to terminate, disrupting traffic and potentially causing DoS on the APM system. Affected context (from connected sources):...