CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

89 matches found

EUVD•added 2026/05/13 6:30 p.m.•9 views

EUVD-2026-29982

A cross-site request forgery CSRF vulnerability exists in the dashboard of the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5.4CVSS5.7AI score0.00104EPSS

Exploits0References2

CVE•added 2026/05/13 2:12 p.m.•16 views

CVE-2026-39455

CVE-2026-39455 affects the BIG-IP Configuration utility when LDAP authentication is used. Undisclosed traffic can cause the httpd process to exhaust file descriptors, leading to a denial‑of‑service where the Configuration utility stops responding until httpd is restarted. Exploitation: remote, un...

8.7CVSS5.8AI score0.003EPSS

Exploits0References1

Vulnrichment•added 2026/05/13 2:12 p.m.•6 views

CVE-2026-41957 BIG-IP and BIG-IQ Configuration utility vulnerability

An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP and BIG-IQ Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.8CVSS6.5AI score0.00503EPSS

Exploits0References1

CVE•added 2026/05/13 2:12 p.m.•17 views

CVE-2026-40699

CVE-2026-40699 – BIG-IP Configuration utility vulnerability : The F5 security advisory describes a vulnerability in undisclosed pages of the BIG-IP Configuration utility that can be exploited by a low-privileged authenticated attacker with network access through the BIG-IP management port or self...

7.1CVSS5.8AI score0.0027EPSS

Exploits0References1

F5 Networks•added 2026/05/13 12:27 p.m.•7 views

K35544022: BIG-IP Configuration utility CSRF vulnerability CVE-2026-40703

Security Advisory Description A cross-site request forgery CSRF vulnerability exists in the dashboard of the BIG-IP Configuration utility. CVE-2026-40703 Impact A remote, unauthenticated attacker may exploit this vulnerability by causing an authenticated user to send a crafted request to the BIG-...

5.4CVSS5.6AI score0.00104EPSS

Exploits0Affected Software11

Positive Technologies•added 2026/05/13 12:0 a.m.•8 views

PT-2026-40656

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.3.1 F5 BIG-IP versions prior to 17.5.1.4 Description A cross-site request forgery CSRF issue exists in the dashboard of the BIG-IP Configuration utility. CSRF is a flaw that allows an attacker to induce a user...

5.4CVSS5.7AI score0.00104EPSS

Exploits0References3

RedhatCVE•added 2026/02/05 7:24 p.m.•3 views

CVE-2026-20732

A vulnerability exists in an undisclosed BIG-IP Configuration utility page that may allow an attacker to spoof error messages. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

4.3CVSS5.4AI score0.00154EPSS

Exploits0References1

OSV•added 2025/10/15 2:15 p.m.•3 views

CVE-2025-59269

A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.4CVSS5.7AI score0.00257EPSS

Exploits0References1

Cvelist•added 2025/10/15 1:55 p.m.•7 views

CVE-2025-59483 BIG-IP Configuration utility and tmsh vulnerability

A validation vulnerability exists in an undisclosed URL in the Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.5CVSS0.0034EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•4 views

EUVD-2021-10156

Malware in sbrugna...

9CVSS8.9AI score0.00887EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2021-10155

Malware in sbrugna...

9.6CVSS9.3AI score0.00797EPSS

Exploits0References2