Lucene search
K

106 matches found

CVE
CVE
added 2021/09/14 10:1 p.m.69 views

CVE-2021-23029

CVE-2021-23029 affects BIG-IP Advanced WAF and ASM TMUI. Insufficient permission checks may allow authenticated users with guest privileges to perform SSRF via the TMUI/ASM configuration utility. Affected versions include 16.0.x before 16.0.1.2; fixed in 16.0.1.2 and 16.1.0+ per F5 advisories. Re...

8.8CVSS8.6AI score0.00875EPSS
Exploits0References1Affected Software2
CVE
CVE
added 2021/09/14 9:48 p.m.90 views

CVE-2021-23027

CVE-2021-23027 affects BIG-IP TMUI: a DOM-based XSS in an undisclosed page of the Configuration utility allows an attacker to run JavaScript in the context of the logged-in user. Affected versions are 16.0.x before 16.0.1.2, 15.1.x before 15.1.3.1, and 14.1.x before 14.1.4.3. Fixed in 16.0.1.2, 1...

6.1CVSS6AI score0.00581EPSS
Exploits0References1Affected Software14
Cvelist
Cvelist
added 2021/09/14 5:40 p.m.40 views

CVE-2021-23032

On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.4, and all versions of 13.1.x and 12.1.x, when a BIG-IP DNS system is configured with non-default Wide IP and pool settings, undisclosed DNS responses can cause the Traffic Management Microkernel TMM to terminate. Note:...

7.7AI score0.00933EPSS
Exploits0References1
Prion
Prion
added 2021/09/14 2:15 p.m.25 views

Design/Logic Flaw

On version 16.x before 16.1.0, 15.1.x before 15.1.3.1, 14.1.x before 14.1.4.3, and all versions of 13.1.x, 12.1.x and 11.6.x, when BIG-IP APM performs Online Certificate Status Protocol OCSP verification of a certificate that contains Authority Information Access AIA, undisclosed requests may cau...

5CVSS5.3AI score0.00598EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2021/08/25 12:0 a.m.28 views

F5 Networks BIG-IP : TMM vulnerability (K05043394)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.0.1.2 / 16.1.0. It is, therefore, affected by a vulnerability as referenced in the K05043394 advisory. - On version 16.0.x before 16.0.1.2, when a BIG-IP ASM and DataSafe profile are configured on a virtual server,...

7.5CVSS7.8AI score0.00933EPSS
Exploits0References2
Cvelist
Cvelist
added 2021/05/10 1:28 p.m.34 views

CVE-2021-23013

On BIG-IP versions 16.0.x before 16.0.1.1, 15.1.x before 15.1.3, 14.1.x before 14.1.4, 13.1.x before 13.1.3.6, and 12.1.x before 12.1.5.3, the Traffic Management Microkernel TMM may stop responding when processing Stream Control Transmission Protocol SCTP traffic under certain conditions. This...

7.7AI score0.00861EPSS
Exploits0References1
Rows per page
Query Builder