F5 Networks BIG-IP : BIG-IP DNS tmsh vulnerability (K000157981)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0. It is, therefore, affected by a vulnerability as referenced in the K000157981 advisory. When BIG-IP DNS is provisioned, a vulnerability exists in an undisclosed TMOS Shell tmsh command that ma...

F5 Networks BIG-IP : BIG-IP PEM iRules vulnerability (K000160875)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0.1. It is, therefore, affected by a vulnerability as referenced in the K000160875 advisory. When BIG-IP PEM iRules are configured on a virtual server iRules using commands starting...

F5 Networks BIG-IP : iControl REST and tmsh vulnerability (K000160863)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.2. It is, therefore, affected by a vulnerability as referenced in the K000160863 advisory. A vulnerability exists in iControl REST and the TMOS Shell tmsh where a highly privileged, authenticat...

F5 Networks BIG-IP : BIG-IP and BIG-IQ privilege escalation vulnerability (K000160972)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.2. It is, therefore, affected by a vulnerability as referenced in the K000160972 advisory. A vulnerability exists in BIG-IP and BIG-IQ systems where a highly privileged, authenticated attacker...

F5 Networks BIG-IP : Appliance mode iControl REST vulnerability (K000160876)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.2. It is, therefore, affected by a vulnerability as referenced in the K000160876 advisory. When running in Appliance mode, an authenticated attacker assigned the Administrator role may be able ...

F5 Networks BIG-IP : BIG-IP DNS Cache vulnerability (K000160945)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.1. It is, therefore, affected by a vulnerability as referenced in the K000160945 advisory. When a BIG-IP DNS profile enabled with DNS cache is configured on a virtual server, undisclosed traffi...

F5 Networks BIG-IP : BIG-IP Configuration utility CSRF vulnerability (K35544022)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4. It is, therefore, affected by a vulnerability as referenced in the K35544022 advisory. A cross-site request forgery CSRF vulnerability exists in the dashboard of the BIG-IP Configuration...

F5 Networks BIG-IP : BIG-IP and BIG-IQ Configuration utility vulnerability (K000156761)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0. It is, therefore, affected by a vulnerability as referenced in the K000156761 advisory. An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP an...

F5 Networks BIG-IP : BIG-IP Appliance mode vulnerability (K000158971)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0.1. It is, therefore, affected by a vulnerability as referenced in the K000158971 advisory. A vulnerability exists in BIG-IP systems that may allow an authenticated attacker with administrative...

F5 Networks BIG-IP : Appliance mode iControl REST vulnerability (K000160911)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.2. It is, therefore, affected by a vulnerability as referenced in the K000160911 advisory. When running in Appliance mode, a directory traversal vulnerability exists in an undisclosed iControl...

F5 Networks BIG-IP : BIG-IP BFD vulnerability (K000150508)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3 / 17.5.1. It is, therefore, affected by a vulnerability as referenced in the K000150508 advisory. When Bidirectional Forwarding Detection BFD is configured in Static and Dynamic routing protocols, undisclosed traffi...

F5 Networks BIG-IP : BIG-IP iControl SOAP vulnerability (K000160926)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0.1. It is, therefore, affected by a vulnerability as referenced in the K000160926 advisory. An authenticated attacker with the Resource Administrator or Administrator role can create SNMP...

F5 Networks BIG-IP : iControl SOAP vulnerability (K000160973)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.2 / 17.5.1.6 / 21.0.0.2. It is, therefore, affected by a vulnerability as referenced in the K000160973 advisory. A vulnerability exists in iControl SOAP where an authenticated attacker with the Resource Administrato...

CVE-2026-41957

creationtimestamp| type| source ---|---|--- 2026-05-14 18:00:00+00:00| seen| https://www.hkcert.org/security-bulletin/f5-products-multiple-vulnerabilities20260515...

F5 Networks BIG-IP : Intel UEFI vulnerability (K000160902)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000160902 advisory. Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of...

F5 Networks BIG-IP : BIG-IP iRule or LTM policy may generate multiple HTTP redirect responses (K000137322)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10.3 / 16.1.4.2 / 17.1.1.1. It is, therefore, affected by a vulnerability as referenced in the K000137322 advisory. A specifically crafted HTTP request may lead the BIG-IP system to generate multiple HTTP redirect...

F5 Networks BIG-IP : BIG-IP Advanced WAF and ASM vulnerability (K000158072)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3. It is, therefore, affected by a vulnerability as referenced in the K000158072 advisory. When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests along with condition...

F5 Networks BIG-IP : Python vulnerability (K000159893)

The version of F5 Networks BIG-IP installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the K000159893 advisory. A flaw was found in python. An improperly handled HTTP response in the HTTP client code of python may allow a remote...

F5 Networks BIG-IP : BIND vulnerability (K000157334)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0.1. It is, therefore, affected by a vulnerability as referenced in the K000157334 advisory. Under certain circumstances, BIND is too lenient when accepting records from answers, allowing an...

F5 Confirms Nation-State Breach, Source Code and Vulnerability Data Stolen

F5 has confirmed it was the victim of a state-sponsored cyberattack that allowed hackers to access its internal…...