Lucene search
K

6413 matches found

F5 Networks
F5 Networks
•added 2023/02/21 5:29 p.m.•42 views

K05272632: BIG-IP AOM password sync vulnerability CVE-2015-8611

Security Advisory Description BIG-IP systems on the 2000, 4000, 5000, 7000, and 10000 platforms may fail to sync passwords to the Always-On-Management AOM. CVE-2015-8611 Impact An Always-On Management AOM configuration with network access may allow access to AOM using a stale or default password...

10CVSS9.6AI score0.0319EPSS
Exploits0Affected Software9
F5 Networks
F5 Networks
•added 2023/02/21 5:28 p.m.•42 views

K74435036: libGraphite vulnerabilities

Security Advisory Description CVE-2016-1521 The directrun function in directmachine.cpp in Libgraphite in Graphite 2 1.2.4, as used in Mozilla Firefox before 43.0 and Firefox ESR 38.x before 38.6.1, does not validate a certain skip operation, which allows remote attackers to execute arbitrary cod...

9.3CVSS8.7AI score0.0831EPSS
Exploits1
F5 Networks
F5 Networks
•added 2023/02/21 5:28 p.m.•42 views

K32790144: NTP vulnerability CVE-2015-7973

Security Advisory Description NTP before 4.2.8p6 and 4.3.x before 4.3.90, when configured in broadcast mode, allows man-in-the-middle attackers to conduct replay attacks by sniffing the network. CVE-2015-7973 Impact If an NTP network is configured for broadcast operations, then either a...

6.5CVSS6.1AI score0.03362EPSS
Exploits2Affected Software22
F5 Networks
F5 Networks
•added 2023/01/04 7:47 p.m.•42 views

K55347921: Linux kernel vulnerability CVE-2017-7477

Security Advisory Description Heap-based buffer overflow in drivers/net/macsec.c in the MACsec module in the Linux kernel through 4.10.12 allows attackers to cause a denial of service or possibly have unspecified other impact by leveraging the use of a MAXSKBFRAGS+1 size in conjunction with the...

7CVSS7AI score0.00387EPSS
Exploits0
F5 Networks
F5 Networks
•added 2023/01/04 12:54 a.m.•42 views

K34035645: Multiple Wireshark vulnerabilities

Security Advisory Description CVE-2018-7320 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12, the SIGCOMP protocol dissector could crash. This was addressed in epan/dissectors/packet-sigcomp.c by validating operand offsets. CVE-2018-7321 In Wireshark 2.4.0 to 2.4.4 and 2.2.0 to 2.2.12,...

7.5CVSS7.2AI score0.02743EPSS
Exploits3
F5 Networks
F5 Networks
•added 2022/12/27 4:42 a.m.•42 views

K82567234: NodeJS vulnerability CVE-2022-32215

Security Advisory Description The llhttp parser v14.20.1, v16.17.1 and v18.9.1 in the http module in Node.js does not correctly handle multi-line Transfer-Encoding headers. This can lead to HTTP Request Smuggling HRS. CVE-2022-32215 Impact Impact There is no impact; F5 products are not affected b...

6.5CVSS6.9AI score0.68796EPSS
Exploits1
F5 Networks
F5 Networks
•added 2016/11/21 12:0 a.m.•42 views

SOL13201415 - MySQL vulnerability CVE-2016-5616

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

4.4CVSS2.7AI score
Exploits10References4
F5 Networks
F5 Networks
•added 2016/11/14 12:0 a.m.•42 views

SOL36784855 - Apache Tomcat vulnerability CVE-2016-0762

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5.9CVSS0.7AI score0.07991EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2016/10/07 12:0 a.m.•42 views

SOL67644055 - PHP vulnerability CVE-2016-5772

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

9.8CVSS2.5AI score0.09674EPSS
Exploits1References4
F5 Networks
F5 Networks
•added 2016/09/27 12:0 a.m.•42 views

SOL57255643 - libssh vulnerability CVE-2016-0739

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5.9CVSS2.8AI score0.02431EPSS
Exploits0References7
F5 Networks
F5 Networks
•added 2016/08/18 12:0 a.m.•42 views

SOL01409145 - Oracle MySQL vulnerability CVE-2016-0641

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5.1CVSS1.4AI score0.0139EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2016/08/11 12:0 a.m.•42 views

SOL21531693 - libssh2 vulnerability CVE-2016-0787

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5.9CVSS1.6AI score0.02697EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2016/08/04 12:0 a.m.•42 views

SOL82205554 - Multiple MySQL vulnerabilities

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

5.5CVSS2.4AI score0.01002EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2016/07/13 12:0 a.m.•42 views

SOL55922302 - XSS in F5 WebSafe Dashboard vulnerability CVE-2016-5236

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

5.4CVSS2.2AI score0.00636EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2016/03/25 12:0 a.m.•42 views

SOL30409575 - ISC DHCP vulnerability CVE-2016-2774

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.1CVSS0.9AI score0.73622EPSS
Exploits0References3
F5 Networks
F5 Networks
•added 2016/03/23 12:0 a.m.•42 views

SOL17232507 - OpenSSL vulnerability CVE-2016-0798

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

7.8CVSS2.7AI score0.24409EPSS
Exploits1References4
F5 Networks
F5 Networks
•added 2016/03/09 12:0 a.m.•42 views

SOL46264120 - BIND vulnerability CVE-2016-1285

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL4602: Overview of the F5 security vulnerability response policy SOL9957: Creating a custom RSS feed to view new and updated documents SOL4918: Overview of the F5...

6.8CVSS2.6AI score0.59143EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2016/02/03 12:0 a.m.•42 views

SOL15955144 - Mozilla NSS vulnerability CVE-2015-2730

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

4.3CVSS3.4AI score0.03594EPSS
Exploits0References8
F5 Networks
F5 Networks
•added 2015/12/23 12:0 a.m.•42 views

SOL80080243 - Apache vulnerability CVE-2009-3095

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

5CVSS3.1AI score0.1256EPSS
Exploits2References5
F5 Networks
F5 Networks
•added 2015/12/18 12:0 a.m.•42 views

SOL76930736 - Libpng vulnerability CVE-2015-8126

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

7.5CVSS1.5AI score0.10339EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2015/10/27 12:0 a.m.•42 views

SOL17407 - Datastor kernel vulnerability CVE-2015-7394

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

9CVSS1.9AI score0.03892EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2015/04/30 12:0 a.m.•42 views

SOL16531 - Linux kernel vulnerability CVE-2014-4027

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

2.3CVSS3.4AI score0.0065EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2015/04/09 12:0 a.m.•42 views

SOL16393 - NTP vulnerability CVE-2014-9751

Vulnerability Recommended Actions If you are running a version listed in the Versions known to be vulnerable column, you can eliminate this vulnerability by upgrading to a version listed in the Versions known to be not vulnerable column. If the table lists only an older version than what you are...

6.8CVSS1.7AI score0.04532EPSS
Exploits0References7
F5 Networks
F5 Networks
•added 2014/12/31 12:0 a.m.•42 views

SOL15939 - pl_tree.php XSS vulnerability CVE-2014-9342

Recommended action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not list any version...

4.3CVSS1.6AI score0.02117EPSS
Exploits0References6
F5 Networks
F5 Networks
•added 2014/12/08 12:0 a.m.•42 views

SOL15897 - Wget vulnerability CVE-2014-4877

Recommended Action ARX If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. Supplemental...

9.3CVSS2.1AI score0.39883EPSS
Exploits4References6
F5 Networks
F5 Networks
•added 2014/12/08 12:0 a.m.•42 views

SOL15898 - PHP vulnerability CVE-2014-3710

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

5CVSS3.7AI score0.14013EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2014/11/27 12:0 a.m.•42 views

SOL15885 - GNU C Library vulnerability CVE-2011-1071

Most ARX components are based on GNU C library code. Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are current...

10CVSS1.3AI score0.14323EPSS
Exploits4References4
F5 Networks
F5 Networks
•added 2014/11/06 12:0 a.m.•42 views

SOL15795 - Linux kernel vulnerability CVE-2014-7284

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

6.4CVSS2.7AI score0.03751EPSS
Exploits1References4
F5 Networks
F5 Networks
•added 2014/09/04 12:0 a.m.•42 views

SOL15547 - MIT Kerberos 5 vulnerability CVE-2014-4342

Vulnerability Recommended Actions BIG-IP If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table doe...

5CVSS1.2AI score0.06523EPSS
Exploits0References3
F5 Networks
F5 Networks
•added 2014/09/04 12:0 a.m.•42 views

SOL15549 - Rsync vulnerability CVE-2007-6199

rsync before 3.0.0pre6, when running a writable rsync daemon that is not using chroot, allows remote attackers to access restricted files via unknown vectors that cause rsync to create a symlink that points outside of the module's hierarchy. CVE-2007-6199...

9.3CVSS9.2AI score0.04136EPSS
Exploits0References6
F5 Networks
F5 Networks
•added 2014/08/18 12:0 a.m.•42 views

SOL15513 - LZ4 vulnerability CVE-2014-4611

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents. SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

5CVSS2.7AI score0.08103EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2014/07/17 12:0 a.m.•42 views

SOL15432 - Apache Tomcat vulnerability CVE-2014-0099

Recommended Action If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the table does not list any version in the column, then no upgrade candidate currently exists. To mitigate this...

4.3CVSS1.5AI score0.08838EPSS
Exploits0References5
F5 Networks
F5 Networks
•added 2014/07/09 12:0 a.m.•42 views

SOL15401 - OpenSSL vulnerability CVE-2012-2333

Recommended action You can eliminate this vulnerability by running a version listed in the Versions known to be not vulnerable column in the previous table. If the Versions known to be not vulnerable column does not list a version that is higher than the version you are running, then no upgrade...

6.8CVSS1.5AI score0.28154EPSS
Exploits0References6
F5 Networks
F5 Networks
•added 2014/06/23 12:0 a.m.•42 views

SOL15369 - OpenSSL vulnerability CVE-2009-0591

Vulnerability Recommended Actions None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5...

2.6CVSS2.7AI score0.02735EPSS
Exploits0References4
F5 Networks
F5 Networks
•added 2014/04/17 12:0 a.m.•42 views

SOL15158 - OpenSSL vulnerability CVE-2013-6450

Vulnerability Recommended Actions If the previous table lists a version in the Versions known to be not vulnerable column, you can eliminate this vulnerability by upgrading to the listed version. If the listed version is older than the version you are currently running, or if the table does not...

5.8CVSS2AI score0.14542EPSS
Exploits1References8
F5 Networks
F5 Networks
•added 2013/08/15 12:0 a.m.•42 views

SOL14613 - BIND vulnerability CVE-2013-4854

Recommended action None Supplemental Information SOL9970: Subscribing to email notifications regarding F5 products SOL9957: Creating a custom RSS feed to view new and updated documents SOL4602: Overview of the F5 security vulnerability response policy SOL4918: Overview of the F5 critical issue...

7.8CVSS3.8AI score0.3415EPSS
Exploits1References6
F5 Networks
F5 Networks
•added 2010/06/21 12:0 a.m.•42 views

SOL11720 - Samba server vulnerability CVE-2010-2063

A buffer overflow in smbd for Samba 3.0.x before 3.3.13 allows remote attackers to cause a denial of service or possibly execute arbitrary code via a crafted field in a packet. Information about this advisory is available at the following location:...

7.5CVSS8.5AI score0.78702EPSS
Exploits5
F5 Networks
F5 Networks
•added 2006/08/16 12:0 a.m.•42 views

SOL5794 - Security Advisory: Perl integer sign error in format string processing - CVE-2005-3962

Although F5 Networks products contain versions of Perl that are subject to this vulnerability, this vulnerability can only be exploited by an attacker that has root access. As a result, F5 Networks products are not considered vulnerable. Integer overflow in the format string functionality...

4.6CVSS9.8AI score0.01374EPSS
Exploits2
F5 Networks
F5 Networks
•added 2006/05/04 12:0 a.m.•42 views

SOL6365 - Multiple DNS vulnerabilities VU#955777

Vulnerability description This security advisory describes several potential vulnerabilities in Internet Systems Consortium's Berkeley Internet Name Daemon BIND. BIND is provided on some F5 Networks products. The potential vulnerabilities include: execution of arbitrary code, denial of service, a...

1.2AI score
Exploits0Affected Software5
F5 Networks
F5 Networks
•added 2026/06/05 3:53 p.m.•41 views

K000161612: Golang vulnerabilities CVE-2025-4674 and CVE-2025-61724

Security Advisory Description CVE-2025-4674 The go command may execute unexpected commands when operating in untrusted VCS repositories. This occurs when possibly dangerous VCS configuration is present in repositories. This can happen when a repository was fetched via one VCS e.g. Git, but contai...

8.6CVSS6.8AI score0.00526EPSS
Exploits0
F5 Networks
F5 Networks
•added 2026/04/20 9:8 p.m.•41 views

K000160902: Intel UEFI vulnerability CVE-2025-20027

Security Advisory Description Improper input validation in the UEFI WheaERST module for some IntelR reference platforms may allow an escalation of privilege. System software adversary with a privileged user combined with a high complexity attack may enable escalation of privilege. This result may...

7.1CVSS5.7AI score0.00102EPSS
Exploits0Affected Software13
F5 Networks
F5 Networks
•added 2024/09/30 2:51 p.m.•41 views

K000141270: PHP vulnerabilities CVE-2016-7411, CVE-2016-9138, CVE-2016-9137, CVE-2016-4541, and CVE-2016-4540

Security Advisory Description CVE-2016-7411 ext/standard/varunserializer.re in PHP before 5.6.26 mishandles object-deserialization failures, which allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via an unserialize call that referenc...

9.8CVSS9.1AI score0.06229EPSS
Exploits4
F5 Networks
F5 Networks
•added 2024/07/25 1:29 a.m.•41 views

K000140297: Speculative race condition vulnerability CVE-2024-26602

Security Advisory Description In the Linux kernel, the following vulnerability has been resolved: sched/membarrier: reduce the ability to hammer on sysmembarrier On some systems, sysmembarrier can be very expensive, causing overall slowdowns for everything. So put a lock on the path in order to...

5.5CVSS5.5AI score0.00316EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/06/06 1:49 a.m.•41 views

K000139922: Open vSwitch vulnerabilities CVE-2023-3966 and CVE-2023-5366

Security Advisory Description CVE-2023-3966 A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is...

7.5CVSS6.3AI score0.01033EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/05/08 1:6 p.m.•41 views

K000132430: The BIG-IP system may fail to block HTTP Request Smuggling attacks

Security Advisory Description The BIG-IP system may fail to block non-RFC-compliant HTTP requests to the pool member, which may lead to an HTTP Request Smuggling attack. This issue occurs when all of the following conditions are met: A virtual server is associated with an HTTP profile. The BIG-IP...

6.8AI score
Exploits0
F5 Networks
F5 Networks
•added 2024/03/21 12:20 a.m.•41 views

K000138966: Intel Xeon CPU vulnerability CVE-2023-23908

Security Advisory Description Improper access control in some 3rd Generation IntelR XeonR Scalable processors may allow a privileged user to potentially enable information disclosure via local access. CVE-2023-23908 Impact This vulnerability may allow a privileged user to enable information...

6CVSS5.8AI score0.00308EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2024/03/06 10:56 p.m.•41 views

K000138851: OpenJDK vulnerabilities CVE-2024-20921, CVE-2024-20926, and CVE-2024-20932

Security Advisory Description CVE-2024-20921 Vulnerability in the Oracle Java SE, Oracle GraalVM for JDK, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: Hotspot. Supported versions that are affected are Oracle Java SE: 8u391, 8u391-perf, 11.0.21, 17.0.9, 21.0.1; Oracle...

7.5CVSS5.8AI score0.01026EPSS
Exploits0
F5 Networks
F5 Networks
•added 2024/02/27 7:14 p.m.•41 views

K000138731: Linux vulnerability CVE-2023-3776

Security Advisory Description A use-after-free vulnerability in the Linux kernel's net/sched: clsfw component can be exploited to achieve local privilege escalation. If tcfchangeindev fails, fwsetparms will immediately return an error after incrementing or decrementing the reference counter in...

7.8CVSS6.9AI score0.00517EPSS
Exploits0Affected Software1
F5 Networks
F5 Networks
•added 2024/02/23 10:26 p.m.•41 views

K000138682: libssh vulnerability CVE-2023-2283

Security Advisory Description A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in thepkiverifydatasignature function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The...

6.5CVSS6.5AI score0.01061EPSS
Exploits2Affected Software4
F5 Networks
F5 Networks
•added 2023/06/28 10:23 p.m.•41 views

K000135262: Apache Tomcat vulnerability CVE-2023-28709

Security Advisory Description The fix for CVE-2023-24998 was incomplete for Apache Tomcat 11.0.0-M2 to 11.0.0-M4, 10.1.5 to 10.1.7, 9.0.71 to 9.0.73 and 8.5.85 to 8.5.87. If non-default HTTP connector settings were used such that the maxParameterCount could be reached using query string parameter...

7.5CVSS9.2AI score0.51547EPSS
Exploits1Affected Software12
Total number of security vulnerabilities5000