CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

48 matches found

Vulnrichment•added 2026/05/13 2:12 p.m.•8 views

CVE-2026-40060 BIG-IP Advanced WAF and ASM vulnerability

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00324EPSS

Exploits0References1

Cvelist•added 2026/05/13 2:12 p.m.•25 views

CVE-2026-40060 BIG-IP Advanced WAF and ASM vulnerability

8.7CVSS0.00324EPSS

Exploits0References1

F5 Networks•added 2026/05/13 12:29 p.m.•11 views

K000160727: BIG-IP Advanced WAF and ASM vulnerability CVE-2026-40060

Security Advisory Description When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. CVE-2026-40060 Impact Traffic is disrupted while the bd process restarts. This vulnerability allows a remote,...

8.7CVSS5.7AI score0.00324EPSS

Exploits0Affected Software2

RedhatCVE•added 2026/02/05 7:23 p.m.•5 views

CVE-2026-22548

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests along with conditions beyond the attacker's control can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.2CVSS5.4AI score0.00185EPSS

Exploits0References1

CVE•added 2026/02/04 3:2 p.m.•17 views

CVE-2026-22548

CVE-2026-22548 affects BIG-IP Advanced WAF/ASM when a security policy is configured on a virtual server. Undisclosed requests can cause the bd process to terminate, resulting in a DoS on the BIG-IP system. The issue is addressed in BIG-IP version 17.1.3 for the 17.x branch (previous 17.1.0–17.1.2...

8.2CVSS5.4AI score0.00185EPSS

Exploits0References1Affected Software2

Cvelist•added 2026/02/04 3:2 p.m.•26 views

CVE-2026-22548 BIG-IP Advanced WAF and ASM vulnerability

8.2CVSS0.00185EPSS

Exploits0References1

EUVD•added 2026/02/04 3:2 p.m.•6 views

EUVD-2026-5490

8.2CVSS5.4AI score0.00185EPSS

Exploits0References1

CNNVD•added 2026/02/04 12:0 a.m.•6 views

F5 BIG-IP 竞争条件问题漏洞

F5 BIG-IP is an application delivery platform developed by F5 Technologies in the United States. It integrates functions such as network traffic management, application security management, and load balancing. F5 BIG-IP has a competition condition vulnerability; this vulnerability occurs when...

8.2CVSS6AI score0.00185EPSS

Exploits0References1

Positive Technologies•added 2026/02/04 12:0 a.m.•7 views

PT-2026-6106

Name of the Vulnerable Software and Affected Versions F5 BIG-IP Advanced WAF and ASM affected versions not specified Description A configuration issue within BIG-IP Advanced WAF or ASM security policies on a virtual server can lead to the termination of the bd process due to undisclosed requests...

8.2CVSS5.5AI score0.00185EPSS

Exploits0References6

RedhatCVE•added 2025/10/16 4:1 p.m.•4 views

CVE-2025-61935

When a BIG IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS6.8AI score0.00317EPSS

Exploits0References1

OSV•added 2025/10/15 4:15 p.m.•3 views

CVE-2025-61935

8.7CVSS5.8AI score0.00317EPSS

Exploits0References1

EUVD•added 2025/10/15 3:30 p.m.•5 views

EUVD-2025-34632

When a BIG-IP Advanced WAF or BIG-IP ASM Security Policy is configured with a JSON content profile that has a malformed JSON schema, and the security policy is applied to a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End o...

8.7CVSS6.3AI score0.00317EPSS

Exploits0References2

EUVD•added 2025/10/15 3:30 p.m.•6 views

EUVD-2025-34643

When a BIG-IP Advanced WAF or ASM security policy is configured with a URL greater than 1024 characters in length for the Data Guard Protection Enforcement setting, either manually or through the automatic Policy Builder, the bd process can terminate repeatedly. Note: Software versions which have...

8.7CVSS6.2AI score0.00317EPSS

Exploits0References2

Cvelist•added 2025/10/15 3:19 p.m.•7 views

CVE-2025-61935 BIG-IP Advanced WAF and ASM vulnerability

8.7CVSS0.00317EPSS

Exploits0References1

Vulnrichment•added 2025/10/15 3:19 p.m.•3 views

CVE-2025-61935 BIG-IP Advanced WAF and ASM vulnerability

8.7CVSS6.4AI score0.00317EPSS

Exploits0References1

OSV•added 2025/10/15 2:15 p.m.•3 views

CVE-2025-61938

8.7CVSS5.8AI score

Exploits0References1

OSV•added 2025/10/15 2:15 p.m.•3 views

CVE-2025-54858

8.7CVSS5.8AI score0.00317EPSS

Exploits0References1

NVD•added 2025/10/15 2:15 p.m.•9 views

CVE-2025-54858

8.7CVSS0.00317EPSS

Exploits0References1

CVE•added 2025/10/15 1:55 p.m.•14 views

CVE-2025-54858

CVE-2025-54858 affects BIG-IP Advanced WAF/ASM where a malformed JSON schema in a JSON content profile can cause the bd process to terminate on a configured virtual server, triggering DoS. Affected BIG-IP branches include BIG-IP Advanced WAF/ASM (16.x, 17.x) with fixes introduced in 17.5.1.3 and ...

8.7CVSS6.4AI score0.00317EPSS

Exploits0References1Affected Software2

Cvelist•added 2025/10/15 1:55 p.m.•7 views

CVE-2025-61938 BIG-IP Advanced WAF and ASM bd process vulnerability

8.7CVSS0.00317EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by