Lucene search
K

6413 matches found

F5 Networks
F5 Networks
•added 2024/02/16 10:6 p.m.•49 views

K000138640: Perl vulnerability CVE-2023-47038

Security Advisory Description A vulnerability was found in perl. This issue occurs when a crafted regular expression is compiled by perl, which can allow an attacker controlled byte buffer overflow in a heap allocated buffer. CVE-2023-47038 Impact This vulnerability could allow a local...

7.8CVSS7.2AI score0.00832EPSS
Exploits0Affected Software8
F5 Networks
F5 Networks
•added 2024/01/31 6:39 p.m.•49 views

K000138426: glibc vulnerabilities CVE-2023-6246, CVE-2023-6779, and CVE-2023-6780

Security Advisory Description CVE-2023-6246 A heap-based buffer overflow was found in the vsysloginternal function of the glibc library. This function is called by the syslog and vsyslog functions. This issue occurs when the openlog function was not called, or called with the ident argument set t...

8.4CVSS6.9AI score0.04794EPSS
Exploits9
F5 Networks
F5 Networks
•added 2023/05/09 2:20 a.m.•49 views

K000134517: Eclipse vulnerability CVE-2020-6950

Security Advisory Description Directory traversal in Eclipse Mojarra before 2.3.14 allows attackers to read arbitrary files via the loc parameter or con parameter. CVE-2020-6950 Impact There is no impact; F5 products are not affected by this vulnerability. Security Advisory Status F5 Product...

6.5CVSS7.1AI score0.10124EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/04/06 7:3 p.m.•49 views

K000133432: Intel CPU vulnerability CVE-2022-21216

Security Advisory Description Insufficient granularity of access control in out-of-band management in some IntelR Atom and Intel Xeon Scalable Processors may allow a privileged user to potentially enable escalation of privilege via adjacent network access. CVE-2022-21216 Impact This vulnerability...

7.5CVSS7.5AI score0.00539EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/27 4:22 a.m.•49 views

K000132765: OpenSSL vulnerabilities CVE-2022-4203, CVE-2023-0216, CVE-2023-0217, and CVE-2023-0401

Security Advisory Description CVE-2022-4203 A read buffer overrun can be triggered in X.509 certificate verification, specifically in name constraint checking. Note that this occurs after certificate chain signature verification and requires either a CA to have signed the malicious certificate or...

7.5CVSS6.8AI score0.01846EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 8:2 p.m.•49 views

K22206205: Intel vulnerabilities CVE-2020-0548 CVE-2020-0549

Security Advisory Description CVE-2020-0548 Cleanup errors in some data cache evictions for some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access. CVE-2020-0549 Cleanup errors in some IntelR Processors may allow an authenticated user ...

5.5CVSS5.9AI score0.00587EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 8:1 p.m.•49 views

K50394032: Java SE vulnerabilities CVE-2018-3149, CVE-2018-3169, and CVE-2018-3209

Security Advisory Description CVE-2018-3149 Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JNDI. Supported versions that are affected are Java SE: 6u201, 7u191, 8u182 and 11; Java SE Embedded: 8u181; JRockit: R28.3.19. Difficult to exploit...

8.3CVSS7.5AI score0.07215EPSS
Exploits2
F5 Networks
F5 Networks
•added 2023/02/21 8:0 p.m.•49 views

K9642: Samba vulnerability CVE-2008-1105

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of F5...

7.5CVSS9.2AI score0.69085EPSS
Exploits2
F5 Networks
F5 Networks
•added 2023/02/21 8:0 p.m.•49 views

K17242: Linux kernel SCTP vulnerability CVE-2015-1421

Security Advisory Description Use-after-free vulnerability in the sctpassocupdate function in net/sctp/associola.c in the Linux kernel before 3.18.8 allows remote attackers to cause a denial of service slab corruption and panic or possibly have unspecified other impact by triggering an INIT...

10CVSS7.1AI score0.09828EPSS
Exploits0Affected Software19
F5 Networks
F5 Networks
•added 2023/02/21 7:58 p.m.•49 views

K63025104: NodeJS vulnerability CVE-2018-7160

Security Advisory Description The Node.js inspector, in 6.x and later is vulnerable to a DNS rebinding attack which could be exploited to perform remote code execution. An attack is possible from malicious websites open in a web browser on the same computer, or another computer with network acces...

8.8CVSS8.7AI score0.09916EPSS
Exploits0Affected Software12
F5 Networks
F5 Networks
•added 2023/02/21 7:58 p.m.•49 views

K49033153: Apache Syncope vulnerabilities CVE-2018-1321 and CVE-2018-1322

Security Advisory Description CVE-2018-1321 An administrator with report and template entitlements in Apache Syncope 1.2.x before 1.2.11, 2.0.x before 2.0.8, and unsupported releases 1.0.x and 1.1.x which may be also affected, can use XSL Transformations XSLT to perform malicious operations,...

7.2CVSS6.2AI score0.20502EPSS
Exploits4
F5 Networks
F5 Networks
•added 2023/02/21 7:57 p.m.•49 views

K05112543: HTTPS monitor vulnerability CVE-2018-5542

Security Advisory Description F5 BIG-IP 13.0.0-13.0.1, 12.1.0-12.1.3.6, or 11.2.1-11.6.3.2 HTTPS health monitors do not validate the identity of the monitored server. CVE-2018-5542 Impact This vulnerability may allow unauthorized disclosure and modification of monitor traffic by an attacker with ...

8.1CVSS7.9AI score0.01236EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•49 views

K90492697: OpenSSL vulnerability CVE-2016-6306

Security Advisory Description The certificate parser in OpenSSL before 1.0.1u and 1.0.2 before 1.0.2i might allow remote attackers to cause a denial of service out-of-bounds read via crafted certificate operations, related to s3clnt.c and s3srvr.c. CVE-2016-6306 Impact This vulnerability may allo...

5.9CVSS8AI score0.41683EPSS
Exploits1Affected Software25
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•49 views

K15840535: BIND vulnerability CVE-2019-6477

Security Advisory Description With pipelining enabled each incoming query on a TCP connection requires a similar resource allocation to a query received via UDP or via TCP without pipelining enabled. A client using a TCP-pipelined connection to a server could consume more resources than the serve...

7.5CVSS6.5AI score0.04022EPSS
Exploits0Affected Software11
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•49 views

K11542555: iApps vulnerability CVE-2020-17507

Security Advisory Description An issue was discovered in Qt through 5.12.9, and 5.13.x through 5.15.x before 5.15.1. readxbmbody in gui/image/qxbmhandler.cpp has a buffer over-read. CVE-2020-17507 Impact An unauthenticated remote attacker can trick an administrator into processing a large file wi...

5.3CVSS7.3AI score0.03915EPSS
Exploits0Affected Software14
F5 Networks
F5 Networks
•added 2023/02/21 7:56 p.m.•49 views

K48527562: Samba vulnerabilities CVE-2021-20277, CVE-2017-14746, CVE-2017-15275

Security Advisory Description CVE-2021-20277 A flaw was found in Samba's libldb. Multiple, consecutive leading spaces in an LDAP attribute can lead to an out-of-bounds memory write, leading to a crash of the LDAP server process handling the request. The highest threat from this vulnerability is t...

9.8CVSS7AI score0.21408EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:53 p.m.•49 views

K17199: Linux kernel vulnerability CVE-2014-3690

Security Advisory Description arch/x86/kvm/vmx.c in the KVM subsystem in the Linux kernel before 3.17.2 on Intel processors does not ensure that the value in the CR4 control register remains the same after a VM entry, which allows host OS users to kill arbitrary processes or cause a denial of...

5.5CVSS6.7AI score0.00515EPSS
Exploits0Affected Software18
F5 Networks
F5 Networks
•added 2023/02/21 7:52 p.m.•49 views

K93532943: SSHD session.c vulnerability CVE-2016-3115

Security Advisory Description Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data, related to the 1 doauthenticated1 and 2 sessionx11req functions...

6.4CVSS7.5AI score0.37016EPSS
Exploits13Affected Software23
F5 Networks
F5 Networks
•added 2023/02/21 7:52 p.m.•49 views

K15623: GnuTLS vulnerability CVE-2009-5138

Security Advisory Description GnuTLS before 2.7.6, when the GNUTLSVERIFYALLOWX509V1CACRT flag is not enabled, treats version 1 X.509 certificates as intermediate CAs, which allows remote attackers to bypass intended restrictions by leveraging a X.509 V1 certificate from a trusted CA to issue new...

5.8CVSS6.8AI score0.01814EPSS
Exploits1Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 7:50 p.m.•49 views

K71245322: NTP vulnerability CVE-2015-8138

Security Advisory Description NTP before 4.2.8p6 and 4.3.x before 4.3.90 allows remote attackers to bypass the origin timestamp validation via a packet with an origin timestamp set to zero. CVE-2015-8138 Impact An attacker may be able to disable time synchronization with the server or push...

5.3CVSS6.5AI score0.06255EPSS
Exploits2Affected Software20
F5 Networks
F5 Networks
•added 2023/02/21 7:46 p.m.•49 views

K16013: OpenSSL vulnerability CVE-2014-3569

Security Advisory Description The ssl23getclienthello function in s23srvr.c in OpenSSL 0.9.8zc, 1.0.0o, and 1.0.1j does not properly handle attempts to use unsupported protocols, which allows remote attackers to cause a denial of service NULL pointer dereference and daemon crash via an unexpected...

5CVSS6.5AI score0.20646EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:45 p.m.•49 views

K15313: Java SE vulnerabilities CVE-2014-0456, CVE-2014-0457, and CVE-2014-2421

Security Advisory Description CVE-2014-0456 Unspecified vulnerability in Oracle Java SE 6u71, 7u51, and 8, and Java SE Embedded 7u51, allows remote attackers to affect confidentiality, integrity, and availability via unknown vectors related to Hotspot. CVE-2014-0457 Unspecified vulnerability in...

10CVSS7.3AI score0.07279EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:41 p.m.•49 views

K16834: OpenSSL vulnerability CVE-2011-3210

Security Advisory Description The ephemeral ECDH ciphersuite functionality in OpenSSL 0.9.8 through 0.9.8r and 1.0.x before 1.0.0e does not ensure thread safety during processing of handshake messages from clients, which allows remote attackers to cause a denial of service daemon crash via...

6.5CVSS8.6AI score0.03588EPSS
Exploits2Affected Software2
F5 Networks
F5 Networks
•added 2023/02/21 7:37 p.m.•49 views

K12566: OpenSSL vulnerability CVE-2010-3864

Security Advisory Description Note : For information about signing up to receive security notice updates from F5, refer to K9970: Subscribe to email notifications regarding F5 products and security announcements. Note : Versions that are not listed in this article have not been evaluated for...

7.6CVSS7.8AI score0.22145EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:25 p.m.•49 views

K17447: Linux kernel UDF vulnerabilities CVE-2014-9728, CVE-2014-9729, and CVE-2014-9730

Security Advisory Description CVE-2014-9728 The UDF filesystem implementation in the Linux kernel before 3.18.2 does not validate certain lengths, which allows local users to cause a denial of service buffer over-read and system crash via a crafted filesystem image, related to fs/udf/inode.c and...

4.9CVSS6.2AI score0.00451EPSS
Exploits0Affected Software19
F5 Networks
F5 Networks
•added 2023/02/21 7:1 p.m.•49 views

K16819: Linux kernel vulnerability CVE-2015-3331

Security Advisory Description The driverrfc4106decrypt function in arch/x86/crypto/aesni-intelglue.c in the Linux kernel before 3.19.3 does not properly determine the memory locations used for encrypted data, which allows context-dependent attackers to cause a denial of service buffer overflow an...

9.3CVSS7.5AI score0.10108EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 7:0 p.m.•49 views

K55462146: OpenSSL vulnerability CVE-2017-3733

Security Advisory Description During a renegotiation handshake if the Encrypt-Then-Mac extension is negotiated where it was not in the original handshake or vice-versa then this can cause OpenSSL 1.1.0 before 1.1.0e to crash dependent on ciphersuite. Both clients and servers are affected...

7.5CVSS7.5AI score0.12874EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 7:0 p.m.•49 views

K54647543: Linux kernel vulnerability CVE-2019-25044

Security Advisory Description The block subsystem in the Linux kernel before 5.2 has a use-after-free that can lead to arbitrary code execution in the kernel context and privilege escalation, aka CID-c3e2219216c9. This is related to blkmqfreerqs and blkcleanupqueue. CVE-2019-25044 Impact There is...

7.8CVSS7.5AI score0.00645EPSS
Exploits1
F5 Networks
F5 Networks
•added 2023/02/21 6:55 p.m.•49 views

K06878231: LLDPD vulnerabilities CVE-2015-8011 and CVE-2015-8012

Security Advisory Description CVE-2015-8011 Buffer overflow in the lldpdecode function in daemon/protocols/lldp.c in lldpd before 0.8.0 allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via vectors involving large management addresses and TLV...

9.8CVSS8.9AI score0.05493EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:55 p.m.•49 views

K49000195: Apache Tomcat vulnerability CVE-2017-5647

Security Advisory Description A bug in the handling of the pipelined requests in Apache Tomcat 9.0.0.M1 to 9.0.0.M18, 8.5.0 to 8.5.12, 8.0.0.RC1 to 8.0.42, 7.0.0 to 7.0.76, and 6.0.0 to 6.0.52, when send file was used, results in the pipelined request being lost when send file processing of the...

7.5CVSS8.4AI score0.1684EPSS
Exploits0Affected Software2
F5 Networks
F5 Networks
•added 2023/02/21 6:55 p.m.•49 views

K24465120: iControl REST vulnerability CVE-2017-6167

Security Advisory Description Race conditions in iControl REST may lead to commands executed with different privilege levels than expected. CVE-2017-6167 Impact Sending asynchronous tasks using the iControl REST API may be processed as the wrong user and result in an error. Security Advisory Stat...

8.5CVSS7.6AI score0.01062EPSS
Exploits0Affected Software11
F5 Networks
F5 Networks
•added 2023/02/21 6:54 p.m.•49 views

K05405841: GCM nonce vulnerability CVE-2016-0270

Security Advisory Description IBM Domino 9.0.1 Fix Pack 3 Interim Fix 2 through 9.0.1 Fix Pack 5 Interim Fix 1, when using TLS and AES GCM, uses random nonce generation, which makes it easier for remote attackers to obtain the authentication key and spoof data by leveraging the reuse of a nonce i...

5.9CVSS5.8AI score0.03099EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:54 p.m.•49 views

K53345784: Linux kernel vulnerability CVE-2017-16912

Security Advisory Description The "getpipe" function drivers/usb/usbip/stubrx.c in the Linux Kernel before version 4.14.8, 4.9.71, and 4.4.114 allows attackers to cause a denial of service out-of-bounds read via a specially crafted USB over IP packet. CVE-2017-16912 Impact This vulnerability allo...

7.1CVSS6.4AI score0.04088EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 6:54 p.m.•49 views

K37923932: libTIFF vulnerability CVE-2022-3970

Security Advisory Description A vulnerability was found in LibTIFF. It has been classified as critical. This affects the function TIFFReadRGBATileExt of the file libtiff/tifgetimage.c. The manipulation leads to integer overflow. It is possible to initiate the attack remotely. The exploit has been...

8.8CVSS6.9AI score0.01237EPSS
Exploits1
F5 Networks
F5 Networks
•added 2023/02/21 6:54 p.m.•49 views

K03644631: Samba vulnerability CVE-2016-2126

Security Advisory Description Samba version 4.0.0 up to 4.5.2 is vulnerable to privilege elevation due to incorrect handling of the PAC Privilege Attribute Certificate checksum. A remote, authenticated, attacker can cause the winbindd process to crash using a legitimate Kerberos ticket. A local...

6.5CVSS6.1AI score0.06585EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:53 p.m.•49 views

K17386005: MySQL vulnerabilities CVE-2019-2420, CVE-2019-2434, CVE-2019-2435, CVE-2019-2436, and CVE-2019-2455

Security Advisory Description CVE-2019-2420 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Optimizer. Supported versions that are affected are 5.7.24 and prior and 8.0.13 and prior. Easily exploitable vulnerability allows high privileged attacker with network...

8.1CVSS6.4AI score0.03688EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:53 p.m.•49 views

K32582354: Multiple dnsmasq vulnerabilities

Security Advisory Description CVE-2017-14491 Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers to cause a denial of service crash or execute arbitrary code via a crafted DNS response. CVE-2017-14492 Heap-based buffer overflow in dnsmasq before 2.78 allows remote attackers ...

9.8CVSS8.4AI score0.93307EPSS
Exploits32
F5 Networks
F5 Networks
•added 2023/02/21 6:52 p.m.•49 views

K08478022: Linux kernel vulnerability CVE-2017-7616

Security Advisory Description Incorrect error handling in the setmempolicy and mbind compat syscalls in mm/mempolicy.c in the Linux kernel through 4.10.9 allows local users to obtain sensitive information from uninitialized stack data by triggering failure of a certain bitmap operation...

5.5CVSS5.5AI score0.00413EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•49 views

K68755210: BIG-IP SYN Cookie Protection vulnerability CVE-2022-23011

Security Advisory Description On certain hardware BIG-IP platforms, virtual servers may stop responding while processing TCP traffic due to an issue in the SYN Cookie Protection feature. CVE-2022-23011 Impact On certain hardware BIG-IP platforms, traffic is disrupted for new client connections...

7.5CVSS6.4AI score0.0093EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•49 views

K57211290: IPv6 fragmentation vulnerability CVE-2016-10142

Security Advisory Description An issue was discovered in the IPv6 protocol specification, related to ICMP Packet Too Big PTB messages. The scope of this CVE is all affected IPv6 implementations from all vendors. The security implications of IP fragmentation have been discussed at length in RFC627...

8.6CVSS8.2AI score0.0275EPSS
Exploits0Affected Software23
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•49 views

K00602225: Advanced WAF and BIG-IP ASM vulnerability CVE-2021-23028

Security Advisory Description When JSON content profiles are configured for URLs as part of an F5 Advanced Web Application Firewall WAF/BIG-IP ASM security policy and applied to a virtual server, undisclosed requests may cause the BIG-IP ASM bd process to terminate. CVE-2021-23028 Impact Traffic ...

7.5CVSS7.5AI score0.00933EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•49 views

K33924005: Oracle Java SE vulnerability CVE-2018-2799

Security Advisory Description Vulnerability in the Java SE, Java SE Embedded, JRockit component of Oracle Java SE subcomponent: JAXP. Supported versions that are affected are Java SE: 7u171, 8u162 and 10; Java SE Embedded: 8u161; JRockit: R28.3.17. Easily exploitable vulnerability allows...

5.3CVSS4.3AI score0.15141EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•49 views

K12265377: Intel AMT / ISM multiple vulnerabilities

Security Advisory Description CVE-2020-0594 Out-of-bounds read in IPv6 subsystem in IntelR AMT and IntelR ISM versions before 11.8.77, 11.12.77, 11.22.77 and 12.0.64 may allow an unauthenticated user to potentially enable escalation of privilege via network access. CVE-2020-0595 Use after free in...

9.8CVSS7AI score0.03536EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:47 p.m.•49 views

K28023545: MySQL vulnerability CVE-2022-21515

Security Advisory Description Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Options. Supported versions that are affected are 5.7.38 and prior and 8.0.29 and prior. Easily exploitable vulnerability allows high privileged attacker with network access via multiple...

4.9CVSS5.1AI score0.01418EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•49 views

K86435316: OpenJDK vulnerabilities CVE-2020-2585 and CVE-2020-2655

Security Advisory Description CVE-2020-2585 Vulnerability in the Java SE product of Oracle Java SE component: JavaFX. The supported version that is affected is Java SE: 8u231. Difficult to exploit vulnerability allows unauthenticated attacker with network access via multiple protocols to compromi...

5.9CVSS5.8AI score0.03613EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•49 views

K62712037: BIG-IP TMM vulnerability CVE-2017-6150

Security Advisory Description Under certain conditions for BIG-IP systems using FastL4 profiles, when the Reassemble IP Fragments option is disabled default, some specific large fragmented packets may restart the Traffic Management Microkernel TMM. CVE-2017-6150 Impact An attacker may be able to...

7.8CVSS7.7AI score0.0177EPSS
Exploits0Affected Software10
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•49 views

K65260085: Linux kernel vulnerability CVE-2018-20784

Security Advisory Description In the Linux kernel before 4.20.2, kernel/sched/fair.c mishandles leaf cfsrq's, which allows attackers to cause a denial of service infinite loop in updateblockedaverages or possibly have unspecified other impact by inducing a high load. CVE-2018-20784 Impact There i...

9.8CVSS6.6AI score0.04173EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•49 views

K13331647: Linux kernel vulnerability CVE-2019-13233

Security Advisory Description In arch/x86/lib/insn-eval.c in the Linux kernel before 5.1.9, there is a use-after-free for access to an LDT entry because of a race condition between modifyldt and a BR exception for an MPX bounds violation. CVE-2019-13233 Impact There is no impact; F5 products are...

7CVSS6.8AI score0.00469EPSS
Exploits1
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•49 views

K53634325: Linux kernel vulnerability CVE-2019-19068

Security Advisory Description A memory leak in the rtl8xxxusubmitinturb function in drivers/net/wireless/realtek/rtl8xxxu/rtl8xxxucore.c in the Linux kernel through 5.3.11 allows attackers to cause a denial of service memory consumption by triggering usbsubmiturb failures, aka CID-a2cdd07488e6...

4.9CVSS6.1AI score0.00451EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/02/21 6:35 p.m.•49 views

K99998454: iControl REST vulnerability CVE-2016-5021

Security Advisory Description The iControl REST service in F5 BIG-IP LTM, AAM, AFM, Analytics, APM, ASM, Link Controller, and PEM 11.5.x before 11.5.4, 11.6.x before 11.6.1, and 12.x before 12.0.0 HF3; BIG-IP DNS 12.x before 12.0.0 HF3; BIG-IP GTM 11.5.x before 11.5.4 and 11.6.x before 11.6.1;...

4.9CVSS5.1AI score0.01237EPSS
Exploits0Affected Software16
Total number of security vulnerabilities5000