Lucene search
K

108 matches found

CNVD
CNVD
added 2018/03/06 12:0 a.m.3 views

F5 Unspecified Vulnerability in BIG-IP ASM

F5 BIG-IP ASM Application Security Manager is a Web Application Firewall WAF from F5 USA that provides secure remote access, protects email, and simplifies Web access control while enhancing network and application performance. A security vulnerability exists in the F5 BIG-IP ASM. An attacker cou...

7.5CVSS6.8AI score0.01759EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2017/12/21 12:0 a.m.7 views

The vulnerability of the SOCKS proxy server of the BIG-IP Websafe security solution, the BIG-IP Policy Enforcement Manager, a system for controlling and managing network traffic, the BIG-IP Application Security Manager, a system for balancing local traffic, the BIG-IP Link Controller, a system for balancing internet traffic, the BIG-IP Application Acceleration Manager, the BIG-IP Advanced Firewall Manager, and the BIG-IP Access Policy Manager—these tools enable a hacker to cause a service failure.

The vulnerabilities of the SOCKS proxy server of the BIG-IP Websafe protection mechanism, the BIG-IP Policy Enforcement Manager, which is a system for controlling and managing network traffic; the BIG-IP Application Security Manager, which is a system for protecting applications; the BIG-IP Local...

7.5CVSS5.6AI score0.02664EPSS
Exploits0References4Affected Software8
Tenable Nessus
Tenable Nessus
added 2017/10/24 12:0 a.m.133 views

F5 Networks BIG-IP : Linux kernel vulnerability (K81211720)

The tcpspliceread function in net/ipv4/tcp.c in the Linux kernel before 4.9.11 allows remote attackers to cause a denial of service infinite loop and soft lockup via vectors involving a TCP packet with the URG flag. CVE-2017-6214 C Tenable Network Security, Inc. The descriptive text and package...

7.5CVSS7AI score0.04666EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2017/06/23 12:0 a.m.6 views

The vulnerabilities of Azure cloud services include those related to BIG-IP Application Security Manager, a device for securing applications; BIG-IP Access Policy Manager, a device for controlling access and remote authentication; BIG-IP Link Controller, a device for balancing internet traffic; BIG-IP Policy Enforcement Manager, a device for controlling and managing network traffic; BIG-IP Local Traffic Manager, a device for balancing local traffic; BIG-IP DNS, a device for securing web services; BIG-IP WebSafe, a device for securing web services; BIG-IP Advanced Firewall Manager, a device for providing network firewalls; and BIG-IP Application Acceleration Manager, a device for accelerating application processing. These vulnerabilities allow attackers to gain access to the BIG-IP host.

The vulnerability in Azure’s application security protection services—BIG-IP Application Security Manager, BIG-IP Access Policy Manager for access control and remote authentication, BIG-IP Link Controller for Internet traffic balancing, BIG-IP Policy Enforcement Manager for network traffic contro...

7.5CVSS7.9AI score0.01141EPSS
Exploits0References2Affected Software9
Tenable Nessus
Tenable Nessus
added 2016/12/21 12:0 a.m.39 views

F5 Networks BIG-IP : libxml2 vulnerability (K14338030)

The xmlNextChar function in libxml2 before 2.9.4 allows remote attackers to cause a denial of service heap-based buffer over-read via a crafted XML document. CVE-2016-1762 File data f5bigipSOL14338030.nasl...

8.1CVSS8.2AI score0.06466EPSS
Exploits1References2
CNVD
CNVD
added 2016/11/17 12:0 a.m.5 views

Multiple F5 BIG-IP Product Denial of Service Vulnerabilities

F5 BIG-IP ASM Application Security Manager is a network security product from F5 Corporation, U.S.A. ASM is a comprehensive web application firewall that protects applications and data from known and unknown threats, defends against Trojans that bypass standard protections, and patches...

7.5CVSS6.7AI score0.02432EPSS
Exploits0References1
CNVD
CNVD
added 2016/11/14 12:0 a.m.6 views

F5 BIG-IP ASM Denial of Service Vulnerability

F5 BIG-IP ASM Application Security Manager is a network security product from F5 Corporation, U.S.A. ASM is a comprehensive web application firewall that protects applications and data from known and unknown threats, defends against Trojans that bypass standard protections, and patches...

7.5CVSS6.7AI score0.04542EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2016/04/14 12:0 a.m.7 views

The vulnerability of the BIG-IP Access Policy Manager, as well as the BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security Manager, BIG-IP Global Traffic Manager, BIG-IP Link Controller, BIG-IP Local Traffic Manager, BIG-IQ ADC, BIG-IQ Cloud, and BIG-IQ Device – these tools’ access control and remote authentication mechanisms can be exploited by attackers, leading to service interruptions.

The vulnerability of the virtual server component of the access control and remote authentication solution, BIG-IP Access Policy Manager, as well as software solutions such as BIG-IP Advanced Firewall Manager, BIG-IP Analytics, BIG-IP Application Acceleration Manager, BIG-IP Application Security...

7.8CVSS5.5AI score0.01908EPSS
Exploits0References3Affected Software12
Tenable Nessus
Tenable Nessus
added 2015/12/17 12:0 a.m.186 views

F5 Networks BIG-IP : QEMU vulnerability (SOL51841514)

hw/ide/core.c in QEMU does not properly restrict the commands accepted by an ATAPI device, which allows guest users to cause a denial of service or possibly have unspecified other impact via certain IDE commands, as demonstrated by a WINREADNATIVEMAX command to an empty drive, which triggers a...

7.5CVSS7.4AI score0.03502EPSS
Exploits0References2
CNVD
CNVD
added 2015/05/11 12:0 a.m.2 views

F5 BIG-IP Application Security Manager JSON Content Handling ASM Filter Bypass Vulnerability

F5 BIG-IP is the application switch. The F5 BIG-IP Application Security Manager ASM JSON parser fails to properly filter URL-encoded content, allowing remote attackers to exploit a vulnerability to bypass security filters...

7AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2015/03/02 12:0 a.m.36 views

F5 Networks BIG-IP : ASM < 11.6.0 Response Body XSS

The F5 Networks Application Security Manager ASM running on the remote device is prior to version 11.6.0. It is, therefore, affected by a cross-site scripting vulnerability due to improper validation of user-supplied input to the 'Response Body' field when a new user account is being created. A...

4.3CVSS5.5AI score0.01911EPSS
Exploits1References2
F5 Networks
F5 Networks
added 2015/02/26 12:0 a.m.25 views

SOL16081 - BIG-IP ASM cross-site scripting (XSS) vulnerability CVE-2015-1050

Cross-site scripting XSS vulnerability in F5 BIG-IP Application Security Manager ASM before 11.6.0 allows an authenticated user to inject arbitrary web script or HTML via the Response Body field. CVE-2015-1050...

4.3CVSS5.2AI score0.01911EPSS
Exploits1References5
CNVD
CNVD
added 2015/01/23 12:0 a.m.5 views

F5 BIG-IP Application Security Manager Cross-Site Scripting Vulnerability

The F5 BIG-IP Application Security Manager ASM is a BIG-IP application security manager from F5 USA that provides users with application delivery security solutions, as well as secure remote access, protection of email, and simplified Web access control, while enhancing network and application...

4.3CVSS5.9AI score0.01911EPSS
Exploits1References1
Prion
Prion
added 2015/01/15 3:59 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in F5 BIG-IP Application Security Manager ASM before 11.6 allows remote attackers to inject arbitrary web script or HTML via the Response Body field when creating a new user account...

4.3CVSS6.1AI score0.01911EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2015/01/15 3:0 p.m.20 views

CVE-2015-1050

Cross-site scripting XSS vulnerability in F5 BIG-IP Application Security Manager ASM before 11.6 allows remote attackers to inject arbitrary web script or HTML via the Response Body field when creating a new user account...

5.5AI score0.01911EPSS
Exploits1References5
securityvulns
securityvulns
added 2015/01/14 12:0 a.m.28 views

F5 BIG-IP Application Security Manager crossite scripting

self-XSS...

1.9AI score
Exploits0References1
Packet Storm
Packet Storm
added 2015/01/13 12:0 a.m.32 views

F5 BIG-IP Application Security Manager (ASM) XSS

Edit: Corrected the date in the timeline from 01/12/14 to 01/12/15. Details ======= Product: F5 BIG-IP Application Security Manager ASM Vulnerability: Cross Site Scripting Author: Peter Lapp, [email protected] CVE: None assigned Vulnerable Versions: Confirmed 11.4.0, 11.4.1. Likely 11.4.x-11.5.x...

0.1AI score
Exploits0
Prion
Prion
added 2014/12/08 11:59 a.m.14 views

Cross site scripting

Cross-site scripting XSS vulnerability in the tree view pltree.php feature in Application Security Manager ASM in F5 BIG-IP 11.3.0 allows remote attackers to inject arbitrary web script or HTML by accessing a crafted URL during automatic policy generation...

4.3CVSS6AI score0.02117EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2014/12/08 11:0 a.m.56 views

CVE-2014-9342

CVE-2014-9342 is an XSS vulnerability in F5 BIG-IP pl_tree.php (ASM) affecting the tree view during automatic policy generation. Exploitation allows remote attackers to inject arbitrary script/HTML via a crafted URL. The advisory (SOL15939) confirms affected BIG-IP ASM releases and recommends mit...

4.3CVSS5.7AI score0.02117EPSS
Exploits0References4Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/11/28 12:0 a.m.46 views

F5 Networks BIG-IP : GNU C Library vulnerability (SOL15885)

The GNU C Library aka glibc or libc6 before 2.12.2 and Embedded GLIBC EGLIBC allow context-dependent attackers to execute arbitrary code or cause a denial of service memory consumption via a long UTF8 string that is used in an fnmatch call, aka a 'stack extension attack,' a related issue to...

10CVSS5.7AI score0.14323EPSS
Exploits4References5
Rows per page
Query Builder