Lucene search
K

50 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:25 a.m.5 views

SUSE CVE-2014-8730

The SSL profiles component in F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, AAM 11.4.0 through 11.5.1, AFM 11.3.0 through 11.5.1, Analytics 11.0.0 through 11.5.1, Edge Gateway, WebAccelerator, and WOM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, PEM 11.3.0 throu...

4.3CVSS6.3AI score0.1372EPSS
Exploits0References10
Tenable Nessus
Tenable Nessus
added 2021/01/06 12:0 a.m.66 views

IBM HTTP Server 8.5.0.0 <= 8.5.5.4 / 8.0.0.0 <= 8.0.0.10 / 7.0.0.0 <= 7.0.0.35 / 6.1.0.0 <= 6.1.0.47 / 6.0.0.0 <= 6.0.2.43 (521711)

The version of IBM HTTP Server running on the remote host is affected by a vulnerability. The SSL profiles component in F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, AAM 11.4.0 through 11.5.1, AFM 11.3.0 through 11.5.1, Analytics 11.0.0 through 11.5.1, Edge Gateway,...

4.3CVSS6.8AI score0.99999EPSS
Exploits7References2
OSV
OSV
added 2020/08/26 3:15 p.m.4 views

CVE-2020-5913

In versions 15.0.0-15.1.0.1, 14.1.0-14.1.2.3, 13.1.0-13.1.3.4, 12.1.0-12.1.5.1, and 11.6.1-11.6.5.2, the BIG-IP Client or Server SSL profile ignores revoked certificates, even when a valid CRL is present. This impacts SSL/TLS connections and may result in a man-in-the-middle attack on the...

7.4CVSS7.1AI score0.005EPSS
Exploits0References1
Arista
Arista
added 2019/01/16 12:0 a.m.87 views

Security Advisory 0039

Security Advisory 0039 PDF Date: January 16th, 2019 Version: 1.0 Revision | Date | Changes ---|---|--- 1.0 | January 16th, 2019 | Initial Release The CVE-IDs tracking this issue are CVE-2018-16873, CVE-2018-16874 and CVE-2018-16875 Description This advisory is to document the impact of...

8.1CVSS7.7AI score0.66252EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2018/11/02 12:0 a.m.26 views

F5 Networks BIG-IP : TMM vulnerability (K55102452)

Undisclosed sequence of packets sent to Virtual Servers with client or server SSL profiles using AES-GCM cipher suitesmay cause disruption of data plane services. CVE-2017-6140 This vulnerability affects the following BIG-IP platforms:2000s,2200s,4000s,4200v,i5600, i5800,i7600, i7800,i10600,...

7.5CVSS7.3AI score0.01585EPSS
Exploits0References2
Prion
Prion
added 2018/06/01 2:29 p.m.20 views

Design/Logic Flaw

Under certain conditions, on F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.1, or 11.6.1 HF2-11.6.3.1, virtual servers configured with Client SSL or Server SSL profiles which make use of network hardware security module HSM functionality are exposed and impacted by this issue...

5CVSS5.4AI score0.01719EPSS
Exploits0References2Affected Software11
Cvelist
Cvelist
added 2018/06/01 2:0 p.m.28 views

CVE-2018-5524

Under certain conditions, on F5 BIG-IP 13.0.0-13.1.0.5, 12.1.0-12.1.3.1, or 11.6.1 HF2-11.6.3.1, virtual servers configured with Client SSL or Server SSL profiles which make use of network hardware security module HSM functionality are exposed and impacted by this issue...

5.4AI score0.01719EPSS
Exploits0References2
Prion
Prion
added 2017/12/21 5:29 p.m.21 views

Sql injection

On the BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, i10600,i10800, and VIPRION 4450 blades, running version 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 or 12.1.2 of BIG-IP LTM, AAM, AFM, Analytics, ASM, DNS, GTM or PEM, an undisclosed sequence ...

5CVSS7.5AI score0.01585EPSS
Exploits0References2Affected Software8
OSV
OSV
added 2017/12/21 5:29 p.m.2 views

CVE-2017-6140

On the BIG-IP 2000s, 2200s, 4000s, 4200v, i5600, i5800, i7600, i7800, i10600,i10800, and VIPRION 4450 blades, running version 11.5.0, 11.5.1, 11.5.2, 11.5.3, 11.5.4, 11.6.0, 11.6.1, 12.0.0, 12.1.0, 12.1.1 or 12.1.2 of BIG-IP LTM, AAM, AFM, Analytics, ASM, DNS, GTM or PEM, an undisclosed sequence ...

7.5CVSS5.8AI score0.01585EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2016/10/04 12:0 a.m.4415 views

SOL13167034 - OpenSSL vulnerability CVE-2016-2183

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS1.7AI score0.95707EPSS
Exploits7References12
NVD
NVD
added 2016/06/07 6:59 p.m.25 views

CVE-2016-4545

Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause a denial of service resource consumption and Traffic Management Microkernel restart via an SSL alert during the handshake...

7.5CVSS7.4AI score0.01765EPSS
Exploits0References2
Prion
Prion
added 2016/06/07 6:59 p.m.20 views

Design/Logic Flaw

Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause a denial of service resource consumption and Traffic Management Microkernel restart via an SSL alert during the handshake...

5CVSS7.1AI score0.01765EPSS
Exploits0References2Affected Software9
CVE
CVE
added 2016/06/07 6:0 p.m.53 views

CVE-2016-4545

CVE-2016-4545 affects F5 BIG-IP SSL/TLS handling. The vulnerability arises when SSL alerts are sent during the handshake, potentially causing unnecessary logging and resource consumption that may trigger a Traffic Management Microkernel (TMM) restart and a core file. According to F5 advisory K480...

7.5CVSS7.3AI score0.01765EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2016/06/07 6:0 p.m.34 views

CVE-2016-4545

Virtual servers in F5 BIG-IP 11.5.4, when SSL profiles are enabled, allow remote attackers to cause a denial of service resource consumption and Traffic Management Microkernel restart via an SSL alert during the handshake...

7.4AI score0.01765EPSS
Exploits0References2
F5 Networks
F5 Networks
added 2016/05/06 12:0 a.m.348 views

SOL93600123 - OpenSSL vulnerability CVE-2016-2107

2 IPsec is vulnerable only in phase 1 IKE racoon, if configured to use AES-CBC. Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be no...

5.9CVSS1.1AI score0.89058EPSS
Exploits7References7
F5 Networks
F5 Networks
added 2015/03/30 12:0 a.m.41 views

SOL16317 - OpenSSL vulnerability CVE-2015-0286

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

5CVSS0.7AI score0.20706EPSS
Exploits0References11
F5 Networks
F5 Networks
added 2015/02/12 12:0 a.m.37 views

SOL16124 - OpenSSL vulnerability CVE-2015-0206

The SOD process is only vulnerable if the failover.secure db variable is enabled; the db variable is disabled by default. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed...

5CVSS1.3AI score0.59319EPSS
Exploits0References4
F5 Networks
F5 Networks
added 2015/02/12 12:0 a.m.134 views

SOL16139 - OpenSSL vulnerability CVE-2015-0204

The BIG-IQ and Enterprise Manager products are based on certain TMOS versions. Therefore, they are shipped with the vulnerable code, although the vulnerable components are never used in these products. Recommended Action If the previous table lists a version in the Versions known to be not...

4.3CVSS6.7AI score0.98685EPSS
Exploits0References7
NVD
NVD
added 2014/12/10 12:59 a.m.20 views

CVE-2014-8730

The SSL profiles component in F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, AAM 11.4.0 through 11.5.1, AFM 11.3.0 through 11.5.1, Analytics 11.0.0 through 11.5.1, Edge Gateway, WebAccelerator, and WOM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, PEM 11.3.0 throu...

4.3CVSS4.4AI score0.1372EPSS
Exploits0References14
Prion
Prion
added 2014/12/10 12:59 a.m.25 views

Code injection

The SSL profiles component in F5 BIG-IP LTM, APM, and ASM 10.0.0 through 10.2.4 and 11.0.0 through 11.5.1, AAM 11.4.0 through 11.5.1, AFM 11.3.0 through 11.5.1, Analytics 11.0.0 through 11.5.1, Edge Gateway, WebAccelerator, and WOM 10.1.0 through 10.2.4 and 11.0.0 through 11.3.0, PEM 11.3.0 throu...

4.3CVSS6.8AI score0.99999EPSS
Exploits7References14Affected Software14
Rows per page
Query Builder