CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

146 matches found

EUVD•added 2026/05/13 6:30 p.m.•8 views

EUVD-2026-29982

A cross-site request forgery CSRF vulnerability exists in the dashboard of the BIG-IP Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5.4CVSS5.7AI score0.0003EPSS

Exploits0References2

CVE•added 2026/05/13 2:12 p.m.•8 views

CVE-2026-39455

CVE-2026-39455 affects the BIG-IP Configuration utility when LDAP authentication is used. Undisclosed traffic can cause the httpd process to exhaust file descriptors, leading to a denial‑of‑service where the Configuration utility stops responding until httpd is restarted. Exploitation: remote, un...

8.7CVSS5.8AI score0.00105EPSS

Exploits0References1

Vulnrichment•added 2026/05/13 2:12 p.m.•3 views

CVE-2026-41957 BIG-IP and BIG-IQ Configuration utility vulnerability

An authenticated remote code execution vulnerability through undisclosed vectors exists in the BIG-IP and BIG-IQ Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.8CVSS6.5AI score0.00681EPSS

Exploits0References1

CVE•added 2026/05/13 2:12 p.m.•11 views

CVE-2026-40699

CVE-2026-40699 – BIG-IP Configuration utility vulnerability : The F5 security advisory describes a vulnerability in undisclosed pages of the BIG-IP Configuration utility that can be exploited by a low-privileged authenticated attacker with network access through the BIG-IP management port or self...

7.1CVSS5.8AI score0.00072EPSS

Exploits0References1

F5 Networks•added 2026/05/13 12:27 p.m.•7 views

K35544022: BIG-IP Configuration utility CSRF vulnerability CVE-2026-40703

Security Advisory Description A cross-site request forgery CSRF vulnerability exists in the dashboard of the BIG-IP Configuration utility. CVE-2026-40703 Impact A remote, unauthenticated attacker may exploit this vulnerability by causing an authenticated user to send a crafted request to the BIG-...

5.4CVSS5.6AI score0.0003EPSS

Exploits0Affected Software11

Positive Technologies•added 2026/05/13 12:0 a.m.•8 views

PT-2026-40656

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.3.1 F5 BIG-IP versions prior to 17.5.1.4 Description A cross-site request forgery CSRF issue exists in the dashboard of the BIG-IP Configuration utility. CSRF is a flaw that allows an attacker to induce a user...

5.4CVSS5.7AI score0.0003EPSS

Exploits0References3

RedhatCVE•added 2026/02/05 7:24 p.m.•3 views

CVE-2026-20732

A vulnerability exists in an undisclosed BIG-IP Configuration utility page that may allow an attacker to spoof error messages. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

4.3CVSS5.4AI score0.00064EPSS

Exploits0References1

RedhatCVE•added 2026/01/09 8:59 a.m.•9 views

CVE-2023-49252

A vulnerability has been identified in SIMATIC CN 4100 All versions V2.7. The affected application allows IP configuration change without authentication to the device. This could allow an attacker to cause denial of service condition...

7.5CVSS6.9AI score0.00233EPSS

Exploits0References1

Cvelist•added 2025/11/24 6:25 p.m.•6 views

CVE-2025-36112 IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure

IBM Sterling B2B Integrator and IBM Sterling File Gateway 6.0.0.0 through 6.1.2.7 and 6.2.0.0 through 6.2.0.5 and 6.2.1.1 could reveal sensitive server IP configuration information to an unauthorized user...

5.3CVSS0.00031EPSS

Exploits0References1

Vulnrichment•added 2025/11/24 6:25 p.m.•6 views

CVE-2025-36112 IBM Sterling B2B Integrator and IBM Sterling File Gateway information disclosure

5.3CVSS6.1AI score0.00031EPSS

Exploits0References1

CVE•added 2025/11/24 6:25 p.m.•6 views

CVE-2025-36112

The CVE-2025-36112 issue affects IBM Sterling B2B Integrator and IBM Sterling File Gateway, specifically versions 6.0.0.0–6.1.2.7_1, 6.2.0.0–6.2.0.5, and 6.2.1.1, where an information disclosure vulnerability could reveal sensitive server IP configuration information to an unauthorized user. The ...

5.3CVSS6.1AI score0.00031EPSS

Exploits0References1Affected Software2

Positive Technologies•added 2025/11/24 12:0 a.m.•3 views

PT-2025-47952

5.3CVSS6.5AI score0.00031EPSS

Exploits0References2

OSV•added 2025/10/15 2:15 p.m.•1 views

CVE-2025-59269

A stored cross-site scripting XSS vulnerability exists in an undisclosed page of the BIG-IP Configuration utility that allows an attacker to run JavaScript in the context of the currently logged-in user. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.4CVSS5.7AI score

Exploits0References1

Cvelist•added 2025/10/15 1:55 p.m.•6 views

CVE-2025-59483 BIG-IP Configuration utility and tmsh vulnerability

A validation vulnerability exists in an undisclosed URL in the Configuration utility. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.5CVSS0.00061EPSS

Exploits0References1

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-10155

Malware in sbrugna...

9.6CVSS9.3AI score0.00714EPSS

Exploits0References2

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2021-10156

Malware in sbrugna...

9CVSS8.9AI score0.00326EPSS

Exploits0References2