17 matches found
CVE-2021-22989
On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.2.1, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, 12.1.x before 12.1.5.3, and 11.6.x before 11.6.5.3, when running in Appliance mode with Advanced WAF or BIG-IP ASM provisioned, the TMUI, also referred to as the Configuration utility,...
EUVD-2019-16171
Malware in sbrugna...
EUVD-2017-15199
Malware in sbrugna...
EUVD-2019-16156
Malware in sbrugna...
EUVD-2017-15200
Malware in sbrugna...
EUVD-2017-15232
Malware in sbrugna...
EUVD-2017-15198
Malware in sbrugna...
EUVD-2017-0657
Malware in sbrugna...
EUVD-2017-15224
Malware in sbrugna...
EUVD-2022-28124
Malicious code in bioql PyPI...
CVE-2022-23023
On BIG-IP version 16.1.x before 16.1.2.1, 15.1.x before 15.1.5, 14.1.x before 14.1.4.5, and all versions of 13.1.x and 12.1.x, and BIG-IQ all versions of 8.x and 7.x, undisclosed requests by an authenticated iControl REST user can cause an increase in memory resource utilization. Note: Software...
PT-2023-7393 · F5 · Big-Ip Spk +2
Name of the Vulnerable Software and Affected Versions: BIG-IP Virtual Edition versions 15.1.4 through 15.1.8 BIG-IP Virtual Edition versions 14.1.5 through 14.1.5.3 BIG-IP SPK versions 1.5.0 through 1.6.0 Description: The issue is related to the Traffic Management Microkernel TMM terminating when...
CVE-2022-36795 BIG-IP software SYN cookies vulnerability CVE-2022-36795
In BIG-IP versions 17.0.x before 17.0.0.1, 16.1.x before 16.1.3.1, 15.1.x before 15.1.7, and 14.1.x before 14.1.5.1, when an LTM TCP profile with Auto Receive Window Enabled is configured on a virtual server, undisclosed traffic can cause the virtual server to stop processing new client connectio...
CVE-2022-35735
In BIG-IP Versions 16.1.x before 16.1.3.1, 15.1.x before 15.1.6.1, 14.1.x before 14.1.5.1, and all versions of 13.1.x, an authenticated attacker with Resource Administrator or Manager privileges can create or modify existing monitor objects in the Configuration utility in an undisclosed manner...
PT-2022-22648 · F5 · Big-Ip
Name of the Vulnerable Software and Affected Versions: BIG-IP versions 14.1.x through 14.1.5 BIG-IP versions 15.1.x through 15.1.6.1 BIG-IP versions 16.1.x through 16.1.2.2 Description: When the Message Routing MR Message Queuing Telemetry Transport MQTT profile is configured on a virtual server,...
PT-2021-15376 · F5 · Big-Ip
Name of the Vulnerable Software and Affected Versions: BIG-IP versions 13.1.x through 13.1.3.6 BIG-IP versions 14.1.x through 14.1.3.1 BIG-IP versions 15.1.x through 15.1.3 Description: When the brute force protection feature of BIG-IP Advanced WAF or BIG-IP ASM is enabled on a virtual server and...
Authentication flaw
On BIG-IP 15.1.x before 15.1.3, 14.1.x before 14.1.4.2, 13.1.0.8 through 13.1.3.6, and all versions of 16.0.x, when running in Appliance Mode, an authenticated user assigned the 'Administrator' role may be able to bypass Appliance Mode restrictions utilizing undisclosed iControl REST endpoints...