Lucene search
+L

200 matches found

nvd
nvd
added 2 days ago6 views

CVE-2026-59762

When an HTTP/2 profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Impact: System performance can degrade until the TMM process is either forced to restart or is manually restarted. This vulnerability allows a remote,...

8.7CVSS0.00328EPSS
Exploits0References1
euvd
euvd
added 2 days ago5 views

EUVD-2026-44679

When an HTTP/2 profile is configured on a virtual server, undisclosed requests can cause an increase in memory resource utilization. Impact: System performance can degrade until the TMM process is either forced to restart or is manually restarted. This vulnerability allows a remote,...

8.7CVSS6.1AI score0.00328EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:21 p.m.11 views

CVE-2026-41956

When a classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00263EPSS
Exploits0References1
redhatcve
redhatcve
added 2026/06/05 7:13 p.m.11 views

CVE-2026-40060

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.5AI score0.00324EPSS
Exploits0References1
nessus
nessus
added 2026/05/20 12:0 a.m.13 views

Oracle Linux 9 : nginx (ELSA-2026-18029)

The remote Oracle Linux 9 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2026-18029 advisory. - Resolves: RHEL-176230 - nginx: NGINX: Arbitrary Code Execution Vulnerability CVE-2026-42945 - Resolves: RHEL-159557 - CVE-2026-27654 nginx: NGINX: Denial of...

9.2CVSS9AI score0.61469EPSS
Exploits40References2
euvd
euvd
added 2026/05/13 6:30 p.m.17 views

EUVD-2026-29990

When a classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00263EPSS
Exploits0References2
euvd
euvd
added 2026/05/13 6:30 p.m.14 views

EUVD-2026-29969

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00324EPSS
Exploits0References2
nvd
nvd
added 2026/05/13 4:16 p.m.11 views

CVE-2026-42058

An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an information leak of BIG-IP local user account names. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5.3CVSS0.00187EPSS
Exploits0References1
nvd
nvd
added 2026/05/13 4:16 p.m.17 views

CVE-2026-41956

When a classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00263EPSS
Exploits0References1
nvd
nvd
added 2026/05/13 4:16 p.m.15 views

CVE-2026-40060

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00324EPSS
Exploits0References1
attackerkb
attackerkb
added 2026/05/13 2:12 p.m.11 views

CVE-2026-42058

An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an information leak of BIG-IP local user account names. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

5.3CVSS5.8AI score0.00187EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/05/13 2:12 p.m.30 views

CVE-2026-40060 BIG-IP Advanced WAF and ASM vulnerability

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS0.00324EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/05/13 2:12 p.m.10 views

CVE-2026-40060 BIG-IP Advanced WAF and ASM vulnerability

When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the bd process to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00324EPSS
Exploits0References1
cve
cve
added 2026/05/13 2:12 p.m.22 views

CVE-2026-40060

CVE-2026-40060 affects BIG-IP Advanced WAF/ASM when a security policy is configured on a virtual server; undisclosed requests can cause the bd process to terminate, resulting in DoS with traffic disruption as the process restarts. In F5 advisories, vulnerable branches include BIG-IP Advanced WAF/...

8.7CVSS5.8AI score0.00324EPSS
Exploits0References1Affected Software1
cvelist
cvelist
added 2026/05/13 2:12 p.m.36 views

CVE-2026-42409 BIG-IP HTTP/2 vulnerability

When an HTTP/2 profile and an iRule containing the HTTP::redirect or HTTP::respond command are configured on a virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM process to terminate. Note: Software versions which have reached End of Technical Support EoTS are...

8.7CVSS0.00263EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/05/13 2:12 p.m.8 views

CVE-2026-41956 BIG-IP TMM Vulnerability

When a classification profile is configured on a UDP virtual server, undisclosed requests can cause the Traffic Management Microkernel TMM to terminate. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

8.7CVSS5.8AI score0.00263EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/13 12:0 a.m.11 views

PT-2026-40667

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.3.2 F5 BIG-IP versions prior to 17.5.1.6 F5 BIG-IP versions prior to 21.0.0.2 Description An authenticated attacker can send undisclosed requests to the 'iControl REST' endpoint, which may result in an...

5.3CVSS5.8AI score0.00187EPSS
Exploits0References4
cnnvd
cnnvd
added 2026/05/13 12:0 a.m.9 views

F5 BIG-IP 安全漏洞

F5 BIG-IP is an application delivery platform developed by F5 Technologies in the United States. It integrates functions such as network traffic management, application security management, and load balancing. There is a security vulnerability in F5 BIG-IP. This vulnerability stems from virtual...

8.7CVSS5.8AI score0.00324EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/05/13 12:0 a.m.14 views

PT-2026-40643

Name of the Vulnerable Software and Affected Versions F5 BIG-IP versions prior to 17.1.3.1 F5 BIG-IP versions prior to 17.5.1.4 F5 BIG-IP versions prior to 21.0.0.1 Description When a BIG-IP Advanced WAF or ASM security policy is configured on a virtual server, undisclosed requests can cause the ...

8.7CVSS5.8AI score0.00324EPSS
Exploits0References4
ptsecurity
ptsecurity
added 2026/05/13 12:0 a.m.15 views

PT-2026-40664

Name of the Vulnerable Software and Affected Versions F5 BIG-IP affected versions not specified F5 BIG-IP Next CNF affected versions not specified F5 BIG-IP Next for Kubernetes affected versions not specified Description A stack-based overflow in the Traffic Management Microkernel TMM can be...

8.7CVSS5.9AI score0.00263EPSS
Exploits0References4
Rows per page
Query Builder