Lucene search
K
F5Access Policy Manager Clients

5 matches found

CVE
CVE
added 2021/02/12 5:52 p.m.112 views

CVE-2021-22980

CVE-2021-22980 is an untrusted search path vulnerability in the BIG-IP APM Client Troubleshooting Utility (CTU) for Windows. Affected CTU versions: Edge Client 7.2.x before 7.2.1.1, 7.1.9.x before 7.1.9.8, and 7.1.x-7.1.8.x before 7.1.8.5. The issue allows loading a malicious DLL from the utility...

7.8CVSS7.4AI score0.00279EPSS
CVE
CVE
added 2022/05/05 4:43 p.m.103 views

CVE-2022-29263

CVE-2022-29263 affects F5 BIG-IP APM and BIG-IP APM Clients where the BIG-IP Edge Client Component Installer Service saves temporary files insecurely. The advisory (K33552735) states vulnerable versions include BIG-IP APM 16.1.x before 16.1.2.2, 15.1.x before 15.1.5.1, 14.1.x before 14.1.4.6, 13....

7.8CVSS7.7AI score0.002EPSS
CVE
CVE
added 2023/08/02 3:55 p.m.90 views

CVE-2023-38418

CVE-2023-38418 : The BIG-IP Edge Client Installer for macOS does not follow best practices for privilege elevation during installation. According to the record, this yields a HIGH-severity, local-privilege-escalation risk (CVSSv3 7.8) with low privileges required and no user interaction, affected...

7.8CVSS7.4AI score0.00136EPSS
CVE
CVE
added 2021/03/31 5:32 p.m.65 views

CVE-2021-23002

The CVE-2021-23002 entry is supported by connected documents: BIG-IP APM and APM Client are affected; the issue exposes the session ID in the f5vpn.exe command line when VPN is launched from a browser on Windows. Root cause: session ID leakage in the VPN workflow across multiple BIG-IP release li...

4.5CVSS5.3AI score0.00339EPSS
CVE
CVE
added 2023/08/02 3:54 p.m.65 views

CVE-2023-36858

CVE-2023-36858 affects BIG-IP Edge Client for Windows and macOS. Root cause: insufficient verification of data allows an attacker with local access to modify the client’s configured server list. Impact: potential redirection of traffic to a malicious server. Remediation (from K000132563): upgrade...

7.1CVSS5.8AI score0.00128EPSS